| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32321 | ClipBucket v5 has time-based Blind SQL Injection in ajax.php that leads to Data Exfiltration | MacWarrior | clipbucket-v5 | High | 8.8 | 2026-03-18 20:37:52 | Deep Dive |
| CVE-2026-28354 | ClipBucket v5 has IDOR in Collection Item Management | MacWarrior | clipbucket-v5 | 中危 | - | 2026-02-27 19:18:26 | Deep Dive |
| CVE-2026-26997 | ClipBucket v5 has Stored XSS via Collection name | MacWarrior | clipbucket-v5 | 中危 | - | 2026-02-27 19:15:11 | Deep Dive |
| CVE-2026-26005 | ClipBucket v5 enables internal network scans via an SSRF vulnerability | MacWarrior | clipbucket-v5 | Medium | 5.0 | 2026-02-12 20:34:01 | Deep Dive |
| CVE-2026-25728 | ClipBucket v5 Affected by Remote Code Execution via Avatar/Background File Upload Race Condition | MacWarrior | clipbucket-v5 | - | - | 2026-02-10 17:12:04 | Deep Dive |
| CVE-2026-21875 | ClipBucket v5 Vulnerable to Blind SQL Injection through Channel Comments | MacWarrior | clipbucket-v5 | Critical | 9.8 | 2026-01-07 23:52:19 | Deep Dive |
| CVE-2025-64338 | ClipBucket's Manage Photos Feature is Vulnerable to Stored XSS via Collection Name | MacWarrior | clipbucket-v5 | 中危 | - | 2025-12-15 22:55:03 | Deep Dive |
| CVE-2025-65113 | ClipBucket v5 Unauthenticated Object Flagging Vulnerability | MacWarrior | clipbucket-v5 | Medium | 6.5 | 2025-11-29 00:34:05 | Deep Dive |
| CVE-2025-62709 | ClipBucket v5 is vulnerable to password reset link manipulation | MacWarrior | clipbucket-v5 | Medium | 6.8 | 2025-11-20 16:50:03 | Deep Dive |
| CVE-2025-64339 | ClipBucket v5: Stored XSS Vulnerability in Manage Playlists | MacWarrior | clipbucket-v5 | 中危 | - | 2025-11-07 05:12:38 | Deep Dive |
| CVE-2025-64336 | ClipBucket v5's Manage Photo Feature is Vulnerable to Stored XSS Attack via Photo Title | MacWarrior | clipbucket-v5 | 高危 | - | 2025-11-07 04:32:10 | Deep Dive |
| CVE-2025-64114 | ClipBucket v5: SQL Injection possible through ClipBucket Custom Fields plugin | MacWarrior | clipbucket-v5 | Medium | 6.5 | 2025-11-05 23:30:59 | Deep Dive |
| CVE-2025-62715 | ClipBucket v5: Stored XSS via Collection Tags | MacWarrior | clipbucket-v5 | - | - | 2025-11-04 21:37:33 | Deep Dive |
| CVE-2025-62429 | ClipBucket v5 executes arbitrary PHP code | MacWarrior | clipbucket-v5 | High | 7.2 | 2025-10-20 16:08:03 | Deep Dive |
| CVE-2025-62430 | ClipBucket v5 stored XSS via video/photo fields | MacWarrior | clipbucket-v5 | Medium | 5.4 | 2025-10-17 17:50:24 | Deep Dive |
| CVE-2025-62424 | ClipBucket path traversal vulnerability in template editor allows arbitrary file read and write | MacWarrior | clipbucket-v5 | Medium | 6.7 | 2025-10-17 17:23:28 | Deep Dive |
| CVE-2025-62423 | ClipBucket V5 Blind SQL injection in the Admin Panel | MacWarrior | clipbucket-v5 | Medium | 6.7 | 2025-10-16 18:40:44 | Deep Dive |
| CVE-2025-21624 | ClipBucket V5 Playlist Cover File Upload to Remote Code Execution | MacWarrior | clipbucket-v5 | Critical | 9.8 | 2025-01-07 15:46:11 | Deep Dive |
| CVE-2025-21623 | ClipBucket V5 Unauthenticated Template Directory Update to Denial-of-Service | MacWarrior | clipbucket-v5 | High | 7.5 | 2025-01-07 15:43:11 | Deep Dive |
| CVE-2025-21622 | ClipBucket V5 Avatar URL Path Traversal to Arbitrary File Delete | MacWarrior | clipbucket-v5 | High | 7.5 | 2025-01-07 15:33:41 | Deep Dive |