Lucene search
GoogleOSV:CVE-2019-5123HistoryOct 25, 2019 - 6:15 p.m.
CVE-2019-5123
2019-10-2518:15:11
Google
osv.dev
5
Specially crafted web requests can cause SQL injections in YouPHPTube 7.6. An attacker can send a web request with Parameter dir in /objects/pluginSwitch.json.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| youphptube | eq | 7.2 | |
| youphptube | eq | 7.3 | |
| youphptube | eq | 2.2 | |
| youphptube | eq | 2.4 | |
| youphptube | eq | 7.4 | |
| youphptube | eq | 5.0 | |
| youphptube | eq | 2.7 | |
| youphptube | eq | 7.5 | |
| youphptube | eq | 3.4 | |
| youphptube | eq | 4.0.1 |
Related
cvelist
cvelist
CVE-2019-5123
2019-10-25 17:22:19
nvd
nvd
CVE-2019-5123
2019-10-25 18:15:11
cve
cve
CVE-2019-5123
2019-10-25 18:15:11
prion
prion
Sql injection
2019-10-25 18:15:00
talos
talos
talosblog
talosblog
Vulnerability Spotlight: Multiple vulnerabilities in YouPHPTube
2019-10-30 06:27:28