CVE-2025-21623
- EPSS 1.98%
- Veröffentlicht 07.01.2025 16:15:40
- Zuletzt bearbeitet 05.09.2025 16:34:14
ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 238, ClipBucket V5 allows unauthenticated attackers to change the template directory via a directory traversal, which results in a denial of service.
CVE-2025-21622
- EPSS 1.65%
- Veröffentlicht 07.01.2025 16:15:40
- Zuletzt bearbeitet 05.09.2025 15:07:59
ClipBucket V5 provides open source video hosting with PHP. During the user avatar upload workflow, a user can choose to upload and change their avatar at any time. During deletion, ClipBucket checks for the avatar_url as a filepath within the avatars...
CVE-2024-54135
- EPSS 0.25%
- Veröffentlicht 06.12.2024 16:15:22
- Zuletzt bearbeitet 22.09.2025 17:58:15
ClipBucket V5 provides open source video hosting with PHP. ClipBucket-v5 Version 2.0 to Version 5.5.1 Revision 199 are vulnerable to PHP Deserialization vulnerability. The vulnerability exists in upload/photo_upload.php within the decode_key functio...
CVE-2024-54136
- EPSS 0.25%
- Veröffentlicht 06.12.2024 16:15:22
- Zuletzt bearbeitet 22.09.2025 17:52:43
ClipBucket V5 provides open source video hosting with PHP. ClipBucket-v5 Version 5.5.1 Revision 199 and below is vulnerable to PHP Deserialization vulnerability. The vulnerability exists in upload/upload.php where the user supplied input via collecti...