mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-04 01:28:01 +02:00
0xMarcio
904 B
904 B
CVE-2019-5121
&color=brighgreen)
Description
SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter uuid in /objects/pluginSwitch.json.php
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0911
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0911
Github
No PoCs found on GitHub currently.