7 matches found
CVE-2021-47749
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2021-47749
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2021-47749 YouPHPTube <= 7.8 - Directory Traversal
YouPHPTube = 7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to access arbitrary files by manipulating the 'lang' parameter in GET requests. Attackers can exploit the path traversal flaw in locale/function.php to include and view PHP files outside the...
CVE-2021-47749
YouPHPTube
EUVD-2016-7224
Malware in sbrugna...
Multiple TP-Link Products Information Disclosure Vulnerability
TP-Link TL-WVR and others are wireless router products from China P&L TP-LINK. An information disclosure vulnerability exists in the locale function in several TP-Link products. A remote attacker can exploit this vulnerability by sending an operation=write;locale=%0d request followed by an...
php: Out-of-bounds access in locale_accept_from_http
The localeacceptfromhttp function in ext/intl/locale/localemethods.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not properly restrict calls to the ICU ulocacceptLanguageFromHTTP function, which allows remote attackers to cause a denial of service out-of-bounds read or...