exploitDog

CVE-2025-21623

Опубликовано: 07 янв. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 238, ClipBucket V5 allows unauthenticated attackers to change the template directory via a directory traversal, which results in a denial of service.

Ссылки

https://github.com/MacWarrior/clipbucket-v5/commit/75d663f010cd8569eb9e278f030838174fb30188
Patch
https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-ffhj-hprx-7qvr
Exploit
Vendor Advisory
https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-ffhj-hprx-7qvr
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:oxygenz:clipbucket:*:*:*:*:*:*:*:*

Версия от 5.3 (включая) до 5.5.1-238 (исключая)

EPSS

Процентиль: 78%

0.01185

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

EPSS

Процентиль: 78%

0.01185

Низкий

7.5 High

CVSS3

Дефекты

CWE-22