Lucene search
K

8 matches found

CVE
CVE
added 2026/06/11 10:53 p.m.28 views

CVE-2026-47238

CVE-2026-47238 affects ClipBucket v5 prior to 5.5.3 (patch released in 5.5.3 - #133). A normal authenticated user can perform an insecure IDOR in the videos subtitle editor, allowing editing, uploading, renaming, or deleting subtitles belonging to other users due to lack of proper authorization. ...

6.5CVSS5.3AI score0.002EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/11 10:53 p.m.36 views

CVE-2026-47238 ClipBucket: IDOR in videos subtitle editor

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - 133, a normal authenticated user can edit another user's video subtitles because of a lack of authorization. They can upload subtitles, edit their name or delete them. This issue has been patched in version 5.5.3 - 1...

6.5CVSS0.002EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/11 10:53 p.m.6 views

CVE-2026-47238 ClipBucket: IDOR in videos subtitle editor

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - 133, a normal authenticated user can edit another user's video subtitles because of a lack of authorization. They can upload subtitles, edit their name or delete them. This issue has been patched in version 5.5.3 - 1...

6.5CVSS5.2AI score0.002EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/11 12:0 a.m.19 views

PT-2026-48793

Name of the Vulnerable Software and Affected Versions ClipBucket versions prior to 5.5.3 - 133 Description An Insecure Direct Object Reference IDOR exists in the video subtitle editor of this open source video sharing platform. Due to a lack of authorization, an authenticated user can modify...

6.5CVSS5.2AI score0.002EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.15 views

ClipBucket V5 安全漏洞

ClipBucket V5 is a video hosting platform developed by MacWarrior’s individual developers. Versions of ClipBucket V5 prior to 5.5.3 – including version 133 – contained security vulnerabilities. These vulnerabilities were due to lack of authorization, which could allow ordinary authenticated users...

6.5CVSS5.3AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2026/04/15 8:16 p.m.6 views

CVE-2026-6385

A flaw was found in FFmpeg. A remote attacker could exploit this vulnerability by providing a specially crafted MPEG-PS/VOB media file containing a malicious DVD subtitle stream. This vulnerability is caused by a signed integer overflow in the DVD subtitle parser's fragment reassembly bounds...

6.5CVSS0.00437EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-23766

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description This issue allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with the library is required for exploitation, with attack vectors varying...

7.8CVSS7.6AI score0.00729EPSS
Exploits0References55
Microsoft KB
Microsoft KB
added 2022/05/24 12:0 a.m.10 views

May 24, 2022—KB5014021 (OS Build 20348.740) Preview

May 24, 2022—KB5014021 OS Build 20348.740 Preview For information about Windows update terminology, see the article about the types of Windows updates and the monthly quality update types. For an overview of Windows Server 2022, see its update history page. Note Follow @WindowsUpdate to find out...

6.5AI score
Exploits0
Rows per page
Query Builder