CVE-2019-5123

Specially crafted web requests can cause SQL injections in YouPHPTube 7.6. An attacker can send a web request with Parameter dir in /objects/pluginSwitch.json.php.

Date published : 2019-10-25

https://talosintelligence.com/vulnerability_reports/TALOS-2019-0911