Security Advisory

CVE-2025-55912

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-18 00:00:00

Last updated 2025-09-18 20:40:45

Assigner mitre

State PUBLISHED

Description

An issue in ClipBucket 5.5.0 and prior versions allows an unauthenticated attacker can exploit the plupload endpoint in photo_uploader.php to upload arbitrary files without any authentication, due to missing access controls in the upload handler

← Browse all CVEs View on cve.org ↗