CNNVD-202510-2600 Information
CNNVD ID
CNNVD-202510-2600
Related CVE
- CNNVD Published: 2025-10-20
Description (Chinese)
ClipBucket是MacWarrior开源的一个开源且可免费下载的 PHP 脚本。用于共享视频网站。 ClipBucket v5 5.5.2之前版本存在安全漏洞,该漏洞源于对文件/upload/admin_area/actions/update_launch.php中参数type的错误操作,可能导致远程代码执行。
Description (English)
ClipBucket is an open-source, free-of-charge PHP script for MacWarrior. For sharing video sites. There is a security loophole in the pre-ClipBucket v5-5.2 version, which stems from an error in type of the parameter in file/upload/admin area/actions/update launch.php, which may result in remote code execution.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
MacWarrior
Published
2025-10-20
Last Modified
2026-02-24
References
https://github.com/MacWarrior/clipbucket-v5/commit/e81bac602c871bb1ad971884003a3a496a2ab50b https://github.com/MacWarrior/clipbucket-v5/releases/tag/5.5.2-%23147 https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-3x4g-x3gv-rjmq
Patch
https://github.com/MacWarrior/clipbucket-v5/releases
Share on: