Every CVE whose affected-product data names Oxygenz Clipbucket, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (25)
CVE-2024-54136 — CVSS 9.8 (critical): ClipBucket V5 provides open source video hosting with PHP. ClipBucket-v5 Version 5.5.1 Revision 199 and below is vulnerable to PHP…
CVE-2024-54135 — CVSS 9.8 (critical): ClipBucket V5 provides open source video hosting with PHP. ClipBucket-v5 Version 2.0 to Version 5.5.1 Revision 199 are vulnerable to PHP…
CVE-2026-21875 — CVSS 9.8 (critical): ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-#187 and below allow an attacker to perform Blind SQL Injection…
CVE-2025-21624 — CVSS 9.8 (critical): ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 239, a file upload vulnerability exists in the Manage Playlist…
CVE-2025-67418 — CVSS 9.8 (critical): ClipBucket 5.5.2 is affected by an improper access control issue where the product is shipped or deployed with hardcoded default…
CVE-2025-64338 — CVSS 9.0 (critical): ClipBucket v5 is an open source video sharing platform. In versions 5.5.2 - #156 and below, an authenticated regular user can create a…
CVE-2026-32321 — CVSS 8.8 (high): ClipBucket v5 is an open source video sharing platform. An authenticated time-based blind SQL injection vulnerability exists in ClipBucket…
CVE-2025-21623 — CVSS 7.5 (high): ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 238, ClipBucket V5 allows unauthenticated attackers to change…
CVE-2025-21622 — CVSS 7.5 (high): ClipBucket V5 provides open source video hosting with PHP. During the user avatar upload workflow, a user can choose to upload and change…
CVE-2026-25728 — CVSS 7.5 (high): ClipBucket v5 is an open source video sharing platform. Prior to 5.5.3 - #40, a Time-of-Check to Time-of-Use (TOCTOU) race condition…
CVE-2025-55912 — CVSS 7.3 (high): An issue in ClipBucket 5.5.0 and prior versions allows an unauthenticated attacker can exploit the plupload endpoint in photo_uploader.php…
CVE-2025-62429 — CVSS 7.2 (high): ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.2 #147, ClipBucket v5 is vulnerable to arbitrary PHP code…
CVE-2025-62709 — CVSS 6.8 (medium): ClipBucket v5 is an open source video sharing platform. In ClipBucket version 5.5.2, a change to network.class.php causes the application…
CVE-2025-62423 — CVSS 6.7 (medium): ClipBucket V5 provides open source video hosting with PHP. In version5.5.2 - #140 and earlier, a Blind SQL injection vulnerability exists…
CVE-2025-62424 — CVSS 6.7 (medium): ClipBucket is a web-based video-sharing platform. In ClipBucket version 5.5.2 - #146 and earlier, the /admin_area/template_editor.php…
CVE-2025-64114 — CVSS 6.5 (medium): ClipBucket v5 is an open source video sharing platform. Versions 5.5.2 - #151 and below allow authenticated administrators with plugin…
CVE-2025-65113 — CVSS 6.5 (medium): ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.2 - #164, an authorization bypass vulnerability in the AJAX…
CVE-2026-28354 — CVSS 6.5 (medium): ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, collection item operations are vulnerable to…
CVE-2025-55911 — CVSS 6.5 (medium): An issue Clip Bucket v.5.5.2 Build#90 allows a remote attacker to execute arbitrary codes via the file_downloader.php and the file parameter
CVE-2025-62430 — CVSS 5.4 (medium): ClipBucket v5 is an open source video sharing platform. ClipBucket v5 through build 5.5.2 #145 allows stored cross-site scripting (XSS) in…
CVE-2025-64339 — CVSS 5.4 (medium): ClipBucket v5 is an open source video sharing platform. In versions 5.5.2-#146 and below, the Manage Playlists feature is vulnerable to…
CVE-2025-62715 — CVSS 5.4 (medium): ClipBucket v5 is an open source video sharing platform. Versions 5.5.2-#147 and below contain a stored Cross-Site Scripting (XSS)…
CVE-2026-26997 — CVSS 5.4 (medium): ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, a normal authenticated user can store the XSS payload…
CVE-2025-64336 — CVSS 5.4 (medium): ClipBucket v5 is an open source video sharing platform. In versions 5.5.2-#146 and below, the Manage Photos feature is vulnerable to stored…
CVE-2026-26005 — CVSS 5.0 (medium): ClipBucket v5 is an open source video sharing platform. Prior to 5.5.3 - #45, in Clip Bucket V5, The Remote Play allows creating video…