CVE-2021-25877

CVE-2021-25877

EPSS 3.1%

AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://avideoyouphptube.com https://synacktiv.com https://www.synacktiv.com/sites/default/files/2021-01/YouPHPTube_Multiple_Vulnerabilities.pdf