CVE-2019-5116

CVE-2019-5116

An exploitable SQL injection vulnerability exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause a SQL injection. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing exfiltration of the database, user credentials and in certain configuration, access the underlying operating system.

Source: CVE-2019-5116

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다