AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.
References
Link | Resource |
---|---|
http://avideoyouphptube.com | Broken Link Product URL Repurposed |
https://synacktiv.com | Product |
https://www.synacktiv.com/sites/default/files/2021-01/YouPHPTube_Multiple_Vulnerabilities.pdf | Exploit Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-11-01T11:33:18
Updated: 2021-11-01T11:33:18
Reserved: 2021-01-22T00:00:00
Link: CVE-2021-25877
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-01T12:15:08.100
Modified: 2024-02-14T01:17:43.863
Link: CVE-2021-25877
JSON object: View
Redhat Information
No data.
CWE