Filtered by vendor Clip-bucket
Subscriptions
Total
24 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2011-3717 | 1 Clip-bucket | 1 Clipbucket | 2025-04-11 | N/A |
| ClipBucket 2.0.9 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/signup_captcha/signup_captcha.php and certain other files. | ||||
| CVE-2018-7666 | 1 Clip-bucket | 1 Clipbucket | 2024-11-21 | N/A |
| An issue was discovered in ClipBucket before 4.0.0 Release 4902. SQL injection vulnerabilities exist in the actions/vote_channel.php channelId parameter, the ajax/commonAjax.php email parameter, and the ajax/commonAjax.php username parameter. | ||||
| CVE-2018-7665 | 1 Clip-bucket | 1 Clipbucket | 2024-11-21 | N/A |
| An issue was discovered in ClipBucket before 4.0.0 Release 4902. A malicious file can be uploaded via the name parameter to actions/beats_uploader.php or actions/photo_uploader.php, or the coverPhoto parameter to edit_account.php. | ||||
| CVE-2018-7664 | 1 Clip-bucket | 1 Clipbucket | 2024-11-21 | N/A |
| An issue was discovered in ClipBucket before 4.0.0 Release 4902. Any OS commands can be injected via shell metacharacters in the file_name parameter to /api/file_uploader.php or /actions/file_downloader.php. | ||||