CVE-2026-24140 | franklioxygen MyTube up to 1.7.78 Setting saveSettings dynamically-determined object attributes (GHSA-c938-x24g-fxcx)

Inserito da Angelo Barbosa | Gen 24, 2026 | CVE

A vulnerability has been found in franklioxygen MyTube up to 1.7.78 and classified as problematic. Impacted is the function saveSettings of the component Setting Handler. Performing a manipulation results in dynamically-determined object attributes.

This vulnerability is known as CVE-2026-24140. Remote exploitation of the attack is possible. No exploit is available.

The affected component should be upgraded.

CVE-2026-24140 | franklioxygen MyTube up to 1.7.78 Setting saveSettings dynamically-determined object attributes (GHSA-c938-x24g-fxcx)

Post correlati

CVE-2023-50708 | yii2-authclient up to 2.2.14 OAuth1/OAuth2/OpenID timing discrepancy

CVE-2024-34353 | matrix-org matrix-rust-sdk 0.7.0 log file

CVE-2024-46783 | Linux Kernel up to 6.10.9 tcp_bpf_sendmsg return value

CVE-2025-13169 | code-projects Simple Online Hotel Reservation System 1.0 /add_query_reserve.php room_id sql injection