Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 5:57 p.m.8 views

CVE-2019-5129

A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. The parameter base64Url in...

10CVSS7.4AI score0.38531EPSS
Exploits1References1
Circl
Circl
added 2024/01/29 9:41 a.m.167 views

CVE-2019-5129

creationtimestamp| type| source ---|---|--- 2024-01-29 09:41:40+00:00| seen| https://t.me/ctinow/175124 2024-11-30 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-30 2024-12-24 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities ...

10CVSS7.3AI score0.38531EPSS
In wildExploits1References6
VulnCheck KEV
VulnCheck KEV
added 2023/11/14 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-5129

A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. The parameter base64Url in...

10CVSS7.2AI score0.38531EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2020/02/25 12:0 a.m.9 views

YouPHPTube Encoder Command Injection (CVE-2019-5127; CVE-2019-5128; CVE-2019-5129)

A command injection vulnerability exists in YouPHPTube Encoder. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code...

7.5CVSS4.8AI score0.45302EPSS
Exploits3
NVD
NVD
added 2019/10/25 6:15 p.m.23 views

CVE-2019-5129

A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. The parameter base64Url in...

10CVSS9.8AI score0.38531EPSS
Exploits1References1
CVE
CVE
added 2019/10/25 5:12 p.m.181 views

CVE-2019-5129

CVE-2019-5129 affects YouPHPTube Encoder 2.3 (plugin for encoder functionality). It enables unauthenticated command injections via the base64Url parameter in /objects/getSpiritsFromVideo.php, potentially leading to full server compromise. TALOS and NVD summary indicate unauthenticated, remote com...

10CVSS9.7AI score0.38531EPSS
In wildExploits1References1Affected Software1
Talos
Talos
added 2019/10/17 12:0 a.m.120 views

YouPHPTube Encoder base64Url multiple command injections

Summary Exploitable unauthenticated command injections exist in YouPHPTube Encoder 2.3 a plugin for providing encoder functionality in YouPHPTube. Specially crafted web requests can cause commands to be executed on the server. An attacker can send a web request with parameters containing specific...

10CVSS9.9AI score0.45302EPSS
Exploits3
Rows per page
Query Builder