From Secunia security advisory released today:
"Description: Some vulnerabilities have been discovered in YouTube Blog, which can be exploited by malicious people to conduct cross-site scripting and SQL injection attacks, disclose sensitive information, and compromise a vulnerable system." http://secunia.com/advisories/31161/
YouTube Blog is 'a multi-user videolog plataform for posting YouTube videos'. :)
http://sourceforge.net/project/showfiles.php?group_id=222451 |
This is a third party sourceforge project. It's not owned by Google/YouTube. |
Colin is right, thought I've never heard about that software |
Yeah, I'm aware of, but the project has a cool name. :) |