Security Advisory
CVE-2021-47750
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
YouPHPTube <= 7.8 contains a cross-site scripting vulnerability that allows attackers to inject malicious scripts through the redirectUri parameter in the signup page. Attackers can craft special signup URLs with embedded script tags to execute arbitrary JavaScript in victims browsers when they access the signup page.