exploitDog

CVE-2021-47750

Опубликовано: 13 янв. 2026

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.

Ссылки

https://web.archive.org/web/20170506141644/https://www.youphptube.com/
Not Applicable
https://www.exploit-db.com/exploits/51101
Exploit
Third Party Advisory
VDB Entry
https://www.vulncheck.com/advisories/youphptube-cross-site-scripting
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:youphptube:youphptube:*:*:*:*:*:*:*:*

Версия до 7.8 (включая)

EPSS

Процентиль: 6%

0.00025

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-v3cf-6fh9-2ghv

CVSS3: 6.1

github

25 дней назад

YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.

EPSS

Процентиль: 6%

0.00025

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79