Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-14726

Malware in sbrugna...

8.8CVSS7.7AI score0.01064EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-14724

Malware in sbrugna...

8.8CVSS7.7AI score0.00966EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 5:56 p.m.11 views

CVE-2019-5121

SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter uuid in /objects/pluginSwitch.json.php...

8.8CVSS7.8AI score0.01064EPSS
Exploits1References1
NVD
NVD
added 2019/10/25 6:15 p.m.23 views

CVE-2019-5114

An exploitable SQL injection vulnerability exists in the authenticated portion of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

9.9CVSS8.2AI score0.01389EPSS
Exploits1References1
NVD
NVD
added 2019/10/25 6:15 p.m.19 views

CVE-2019-5116

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause a SQL injection. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

8.8CVSS8AI score0.01064EPSS
Exploits1References1
OSV
OSV
added 2019/10/25 6:15 p.m.16 views

CVE-2019-5122

SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter name in /objects/pluginSwitch.json.php...

8.8CVSS7.8AI score
Exploits0References1
OSV
OSV
added 2019/10/25 6:15 p.m.18 views

CVE-2019-5121

SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter uuid in /objects/pluginSwitch.json.php...

8.8CVSS7.9AI score
Exploits0References1
OSV
OSV
added 2019/10/25 6:15 p.m.13 views

CVE-2019-5116

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause a SQL injection. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

8.8CVSS7.8AI score
Exploits0References1
Prion
Prion
added 2019/10/25 6:15 p.m.27 views

Sql injection

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

6.5CVSS8.7AI score0.01064EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/10/25 6:15 p.m.28 views

Sql injection

An exploitable SQL injection vulnerability exist in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing exfiltrati...

6.5CVSS8.8AI score0.00966EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2019/10/25 6:15 p.m.25 views

Sql injection

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause a SQL injection. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

6.5CVSS8.8AI score0.01064EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/10/25 6:15 p.m.22 views

Sql injection

Specially crafted web requests can cause SQL injections in YouPHPTube 7.6. An attacker can send a web request with Parameter dir in /objects/pluginSwitch.json.php...

6.5CVSS8.8AI score0.01012EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2019/10/25 6:15 p.m.21 views

Sql injection

Exploitable SQL injection vulnerabilities exists in the authenticated portion of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

6.5CVSS9AI score0.01064EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/10/25 5:29 p.m.163 views

CVE-2019-5119

CVE-2019-5119 affects YouPHPTube 7.6 with an authenticated SQL injection in /objects/subscribeNotify.json.php (user_id parameter) that can exfiltrate data and, in some configurations, access the OS. Talos/Red Hat and related advisories report multiple SQLi vulnerabilities across YouPHPTube 7.6/7....

8.8CVSS8.7AI score0.00966EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/10/25 5:29 p.m.25 views

CVE-2019-5120

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

7.4CVSS8.8AI score0.01064EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/10/25 5:25 p.m.26 views

CVE-2019-5114

An exploitable SQL injection vulnerability exists in the authenticated portion of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

7.4CVSS9.6AI score0.01389EPSS
Exploits1References1
CVE
CVE
added 2019/10/25 5:25 p.m.184 views

CVE-2019-5114

CVE-2019-5114 is an authenticated SQL injection in YouPHPTube 7.6 affecting the /objects/commentAddNew.json.php endpoint (comments_id parameter). TALOS reports an exploitable, authenticated vulnerability allowing data exfiltration of database contents and user credentials, with potential for broa...

9.9CVSS9.4AI score0.01389EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/10/25 5:22 p.m.172 views

CVE-2019-5123

The CVE-2019-5123 issue affects YouPHPTube 7.6 and involves SQL injection via the /objects/pluginSwitch.json.php endpoint (parameter dir). The TALOS advisory confirms authenticated SQL injections in the YouPHPTube 7.6 frontend/plugin switch logic, potentially allowing exfiltration of database dat...

8.8CVSS8.8AI score0.01012EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/10/25 5:22 p.m.162 views

CVE-2019-5122

YouPHPTube 7.6 exposes authenticated SQL injection vulnerabilities in /objects/pluginSwitch.json.php (parameters uuid, name, dir). The Talos report confirms exploitable injections that could exfiltrate information such as usernames and password hashes and, in some configs, access the underlying O...

8.8CVSS9AI score0.00847EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2019/10/25 5:22 p.m.167 views

CVE-2019-5121

YouPHPTube 7.6 contains authenticated SQL injection vulnerabilities in the /objects/pluginSwitch.json.php endpoint (parameter uuid, name, dir). TALOS documentation describes exploitable, authenticated SQL injections that could exfiltrate database data and, in certain configurations, access the OS...

8.8CVSS9AI score0.01064EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder