CVE-2025-64114

Name of the Vulnerable Software and Affected Versions ClipBucket versions 5.5.2 and below

Description ClipBucket v5 is a video sharing platform. Versions 5.5.2 and below allow authenticated administrators with plugin management privileges to execute arbitrary SQL commands against the database through the ClipBucket Custom Fields plugin. Exploitation requires the Custom Fields plugin to be installed and accessible, and is limited to users with administrative access to the plugin interface. The vulnerable component is the ClipBucket Custom Fields plugin.

Recommendations Versions prior to 5.5.2 should be updated to version 5.5.2 or later.