VYPR

Video Sharing Website

by Oretnom23

CVEs (1)

  • CVE-2021-45255CriDec 21, 2021
    risk 0.64cvss 9.8epss 0.02

    The email parameter from ajax.php of Video Sharing Website 1.0 appears to be vulnerable to SQL injection attacks. A payload injects a SQL sub-query that calls MySQL's load_file function with a UNC file path that references a URL on an external domain. The application interacted…