CVE-2019-16124

Published September 9th, 2019

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

7.5

HIGH

Affected

PROJECT

Description

In YouPHPTube 7.4, the file install/checkConfiguration.php has no access control, which leads to everyone being able to edit the configuration file, and insert malicious PHP code.

WWBN/AVideo

Create Your Own Broadcast Network With AVideo Platform Open-Source. OAVP OVP

GitHub

2.1K