CVE-2021-47750

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-47750

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47750.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-47750

Published

2026-01-13T23:15:49.097Z

Modified

2026-01-24T05:47:29.120871Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims' browsers when they access the signup page.

References

Affected packages

Git / github.com/youphptube/youphptube

Affected ranges

Type: GIT
Repo: https://github.com/youphptube/youphptube
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

12114ba214ccc02c8271c7fe67274dc9ddc3e17f

Affected versions

2.*

2.2

2.4

2.7

3.*

3.4

3.4.1

4.*

4.0

4.0.1

4.0.2

5.*

5.0

6.*

6.5

7.*

7.2

7.3

7.4

7.5

7.6

7.7

7.8

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-47750.json"