CVE-2025-21623
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2025-21623
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-21623.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-21623
- Aliases
-
- GHSA-ffhj-hprx-7qvr
- Published
- 2025-01-07T15:43:11.353Z
- Modified
- 2025-12-02T02:33:45.792652Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- ClipBucket V5 Unauthenticated Template Directory Update to Denial-of-Service
- Details
-
ClipBucket V5 provides open source video hosting with PHP. Prior to 5.5.1 - 238, ClipBucket V5 allows unauthenticated attackers to change the template directory via a directory traversal, which results in a denial of service.
- Database specific
{ "cna_assigner": "GitHub_M", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21623.json", "cwe_ids": [ "CWE-22", "CWE-306" ] }- References
-
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/21xxx/CVE-2025-21623.json
- https://github.com/MacWarrior/clipbucket-v5/commit/75d663f010cd8569eb9e278f030838174fb30188
- https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-ffhj-hprx-7qvr
- https://nvd.nist.gov/vuln/detail/CVE-2025-21623