CNNVD-202509-2928 Information

CNNVD ID

CNNVD-202509-2928

Related CVE

CVE-2025-55911

• CNNVD Published: 2025-09-18

Description (Chinese)

ClipBucket是MacWarrior开源的一个开源且可免费下载的 PHP 脚本。用于共享视频网站。 ClipBucket v.5.5.2 Build#90版本存在安全漏洞，该漏洞源于file_downloader.php中file参数处理不当，可能导致远程代码执行。

Description (English)

ClipBucket is an open-source, free-of-charge PHP script for MacWarrior. For sharing video sites. The ClipBucket v. 5.5.2 Build#90 version contains a security loophole resulting from the mishandling of the file parameters in file downloader.php, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Maggioli SpA

Published

2025-09-18

Last Modified

2026-02-24

References

https://medium.com/@mukund.s1337/cve-2025-55911-clipbucket-5-5-2-build-90-ssrf-via-upload-actions-file-downloader-php-eb49dc02bd6f https://www.exploit-db.com/exploits/52434

Patch

https://github.com/MacWarrior/clipbucket-v5/releases