Specially crafted web requests can cause SQL injections in YouPHPTube 7.6. An attacker can send a web request with Parameter dir in /objects/pluginSwitch.json.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
youphptube youphptube 7.6 |