CVE-2026-25728 ClipBucket v5 Affected by Remote Code Execution via Avatar/Background File Upload Race Condition

ClipBucket v5 is an open source video sharing platform. Prior to 5.5.3 - 40, a Time-of-Check to Time-of-Use TOCTOU race condition vulnerability exists in ClipBucket's avatar and background image upload functionality. The application moves uploaded files to a web-accessible location before...

CVE-2026-25728

CVE-2026-25728 covers a TOCTOU race in ClipBucket v5 pre-5.5.3 where avatar/background image uploads are moved to a web‑accessible location before validation. The file is later validated via ValidateImage() and may be deleted if validation fails, creating a window to execute arbitrary PHP code. E...

CVE-2026-25728 ClipBucket v5 Affected by Remote Code Execution via Avatar/Background File Upload Race Condition

ClipBucket v5 is an open source video sharing platform. Prior to 5.5.3 - 40, a Time-of-Check to Time-of-Use TOCTOU race condition vulnerability exists in ClipBucket's avatar and background image upload functionality. The application moves uploaded files to a web-accessible location before...

PT-2026-7321

Name of the Vulnerable Software and Affected Versions ClipBucket versions prior to 5.5.3 Description ClipBucket is an open source video sharing platform. A Time-of-Check to Time-of-Use TOCTOU race condition exists in the avatar and background image upload functionality. The application moves...

CVE-2023-33386

MarsCTF 1.2.1 has an arbitrary file upload vulnerability in the interface for uploading attachments in the background...

CS Money: Able to upload backgrounds before entering 2FA

Summary: Hi Team, I am able to see and use uploaded backgrounds and able to upload new ones without proper authentication of 2FA. I hope you remember this report 993786. Steps To Reproduce: 1. Login with a steam account and enable 2FA. 1. Now logout your account. Clear all the cookies. 1. Now aga...

CVE-2020-19672

Niushop B2B2C Multi-business basic version V1.11, can bypass the administrator to obtain the background upload interface, through parameter upload, bypass the getimagesize function, upload php file, getshell...

OFCMS background upload file upload vulnerability

OFCMS is a content management system developed based on java technology. There is a file upload vulnerability in OFCMS background upload, which can be exploited by attackers to upload webshell and gain server privileges, posing information leakage and operational security risks...

we7cms file upload vulnerability

we7cms is a content management system based on asp.net development. we7cms V3.0 system file upload vulnerability, the vulnerability is mainly caused by information leakage of the background upload service exposure, the uploaded service failed to get the identity verification, and the file format...

SupeSite 7.5 background upload webshell-vulnerability warning-the black bar safety net

Get the webshell method without any technical content. the. There are many online similar. But, this see online also not, their just at once get a webshell in the process of discovery, so it sends to, Of course, related many examples. For example, the following two. Example 1: the Wordpress...

phpwind background getshell-a vulnerability warning-the black bar safety net

Background upload plugin, you can upload one that contains the php Trojan phpwind standard format plug-in installation package, and getshell. 1. First make an installation package, you need to include a manifest. xml file and a php word此处 文件 名为 php.php a. the manifest. the xml is as follows: ? xm...

SiteServer CMS 3.5 background upload WEBSHELL-vulnerability warning-the black bar safety net

Version number: SiteServer CMS 3.5 Background,Upload a single GIF format Trojan. Then,through the site, file management,modify the file name,you can modify the picture Trojan horse in the format . aspx Version number: SiteServer CMS 3.5 http://demo2.siteserver.cn/siteserver/login.aspx Account:...

ESPCMS 0day vulnerability analysis-vulnerability warning-the black bar safety net

Publishing author:★black kid★ Affected versions: unknown Official website: http://www.ecisp.cn Vulnerability type: COOKIES cheat Vulnerability description: made of COOKIES after the Modify to deceive, into the background upload in jpg structure Getshell it. Code analysis: function...

Meters topology information background upload vulnerability(Bincker)-vulnerability warning-the black bar safety net

Vulnerability description: See background upload page h t t p : / /localhost/admin/include/uploadfile.php ? php requireonce '../login/logincheck.php'; $cssurl="../templates/".$ metskin."/ css"; $imgurl="../templates/".$ metskin."/ images"; ?& gt; html head meta http-equiv="Content-Type"...

Rongsoft Oday bulk to get SHELL-vulnerability warning-the black bar safety net

Author: cast Blog:http://hi. baidu. com/castblog/ Then GOOGLE search for keyword: inurl:xinwenxq. asp? biaohao= Access management address: gonggong/denglu/denglu. asp First, in the management of the landing page, with a simple'or'='or'can fool the past! In the verification file:...