📦 Mytube

Name: Mytube
Author: Franklioxygen

by Franklioxygen

🔍 What is Mytube?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2026-23837

CRITICAL CVSS 9.8 Jan 19, 2026

CVE-2026-23837 is an authentication bypass vulnerability in MyTube that allows unauthenticated attackers to access protected administrative functions. All users running MyTube with loginEnabled: true ...

CVE-2026-24139

MEDIUM CVSS 6.5 Jan 24, 2026

CVE-2026-24139 is an authorization bypass vulnerability in MyTube that allows guest or low-privileged users to download the complete application database. This exposes sensitive data including user in...

CVE-2026-23848

MEDIUM CVSS 6.5 Jan 19, 2026

This vulnerability allows unauthenticated attackers to bypass IP-based rate limiting in MyTube by spoofing the X-Forwarded-For header. This enables unlimited requests to protected API endpoints, poten...

CVE-2026-24140

LOW CVSS 2.7 Jan 24, 2026

MyTube versions 1.7.78 and below have a mass assignment vulnerability in settings management that allows attackers to modify arbitrary application settings. This affects self-hosted MyTube instances w...