CVE-2019-5114
CVE-2019-5114 is an authenticated SQL injection in YouPHPTube 7.6 affecting the /objects/commentAddNew.json.php endpoint (comments_id parameter). TALOS reports an exploitable, authenticated vulnerability allowing data exfiltration of database contents and user credentials, with potential for broa...