CVE-2021-47750

Sažetak

YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.

Reference

https://web.archive.org/web/20170506141644/https://www.youphptube.com/
https://www.exploit-db.com/exploits/51101
https://www.vulncheck.com/advisories/youphptube-cross-site-scripting

CVSS

Base:	6.1
Impact:	2.7
Exploitability:	2.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	LOW	NONE

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Zadnje važnije ažuriranje

22-01-2026 - 20:27

Objavljeno

13-01-2026 - 23:15