Unrated severityNVD Advisory· Published Nov 29, 2025· Updated Dec 1, 2025

ClipBucket v5 Unauthenticated Object Flagging Vulnerability

CVE-2025-65113

Description

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.2 - #164, an authorization bypass vulnerability in the AJAX flagging system allows any unauthenticated user to flag any content (users, videos, photos, collections) on the platform. This can lead to mass flagging attacks, content disruption, and moderation system abuse. This issue has been patched in version 5.5.2 - #164.

Affected products

Macwarrior/Clipbucket V5v5
Range: < 5.5.2 - #164

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/MacWarrior/clipbucket-v5/commit/a83b807e592f85d98f1f156bd3cbb1ffcc230233mitrex_refsource_MISC
github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-9f8v-vph8-pq6qmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000