Insecure File Write Vulnerability in AVideo/YouPHPTube 10.0 and Prior

CVE-2021-25877 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

AVideo/YouPHPTube 10.0 and prior is affected by Insecure file write. An administrator privileged user is able to write files on filesystem using flag and code variables in file save.php.

Learn more about our User Device Pen Test.