Medium severity6.1OSV Advisory· Published Sep 2, 2016· Updated Jun 17, 2026
CVE-2016-4848
CVE-2016-4848
Description
Cross-site scripting (XSS) vulnerability in ClipBucket before 2.8.1 RC2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
34039, 4143+ 2 more
- (no CPE)range: 4039, 4143
- cpe:2.3:a:clip-bucket:clipbucket:*:*:*:*:*:*:*:*range: <=2.8.1
- (no CPE)range: <2.8.1 RC2
Patches
Vulnerability mechanics
References
4- github.com/arslancb/clipbucket/commit/ff5e37d3e1098a7ce2b9fe60389b14514932dd93nvdIssue TrackingPatch
- jvn.jp/en/jp/JVN28386124/index.htmlnvdThird Party Advisory
- jvndb.jvn.jp/jvndb/JVNDB-2016-000140nvdThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/92537nvd
News mentions
0No linked articles in our index yet.