CVE-2021-47750 | Severity.io

Description

YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.

Related CPE's

Vulnerable

References

https://web.archive.org/web/20170506141644/https://www.youphptube.com/

Not Applicable

https://www.exploit-db.com/exploits/51101

ExploitThird Party AdvisoryVDB Entry

https://www.vulncheck.com/advisories/youphptube-cross-site-scripting

Third Party Advisory

Weaknesses

[email protected]

Primary

CWE-79

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.1 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2026-01-13T23:15:49.097Z

1 month ago

Last modified

2026-01-22T20:27:30.770Z

4 weeks ago