CVE-2025-55911
MEDIUMClip Bucket <5.5.2 - RCE
Title source: llmDescription
An issue Clip Bucket v.5.5.2 Build#90 allows a remote attacker to execute arbitrary codes via the file_downloader.php and the file parameter
Exploits (1)
exploitdb
WORKING POC
by Mukundsinh Solanki (r00td3str0y3r) · textremotemultiple
https://www.exploit-db.com/exploits/52434
Scores
CVSS v3
6.5
EPSS
0.0197
EPSS Percentile
83.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Details
CWE
CWE-77
Status
published
Products (1)
oxygenz/clipbucket
< 5.5.2-90
Published
Sep 18, 2025
Tracked Since
Feb 18, 2026