Vulnerabilities > Youphptube > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-25 | CVE-2019-5114 | SQL Injection vulnerability in Youphptube 7.6 An exploitable SQL injection vulnerability exists in the authenticated portion of YouPHPTube 7.6. | 9.3 |
| 2019-09-09 | CVE-2019-16124 | Missing Authorization vulnerability in Youphptube In YouPHPTube 7.4, the file install/checkConfiguration.php has no access control, which leads to everyone being able to edit the configuration file, and insert malicious PHP code. | 9.8 |