High severity7.3NVD Advisory· Published Sep 18, 2025· Updated Jun 17, 2026
CVE-2025-55912
CVE-2025-55912
Description
An issue in ClipBucket 5.5.0 and prior versions allows an unauthenticated attacker can exploit the plupload endpoint in photo_uploader.php to upload arbitrary files without any authentication, due to missing access controls in the upload handler
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- ClipBucket/ClipBucketdescription
- Range: <=5.5.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.