CVE-2021-25876
The CVE-2021-25876 entry concerns AVideo/YouPHPTube (versions 10.0 and earlier) with multiple reflected Cross-Site Scripting vulnerabilities exploitable via the u parameter. The underlying causes allow a remote attacker to steal administrator session cookies or perform actions as an administrator...