CVE-2023-4714
MEDIUM NUCLEIPlayTube 3.0.1 - Information Disclosure via Redirect Handler
Title source: llmExploitation Summary
CVE-2023-4714 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
A vulnerability was found in PlayTube 3.0.1 and classified as problematic. This issue affects some unknown processing of the component Redirect Handler. The manipulation leads to information disclosure. The attack may be initiated remotely. The identifier VDB-238577 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Nuclei Templates (1)
PlayTube 3.0.1 - Information Disclosure
HIGHVERIFIEDby Farish
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
technical-description
https://vuldb.com/?id.238577
Permissions Required, Third Party Advisory, VDB Entry signature
permissions-required
https://vuldb.com/?ctiid.238577
Exploit, Third Party Advisory related
http://packetstormsecurity.com/files/174446/PlayTube-3.0.1-Information-Disclosure.html
Scores
CVSS v3
4.3
EPSS
0.0521
EPSS Percentile
91.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (1)
playtube/playtube
3.0.1
Published
Sep 01, 2023
Tracked Since
Feb 18, 2026