CVE-2026-42847 | MacWarrior clipbucket-v5 up to up to 5.5.3 Authenticated Admin Endpoint action_logs.php fetch_action_logs Type sql injection (GHSA-x33j-5cqg-vrrc)

Inserito da Angelo Barbosa | Mag 15, 2026 | CVE

A vulnerability identified as critical has been detected in MacWarrior clipbucket-v5 up to up to 5.5.3. This affects the function fetch_action_logs of the file admin_area/action_logs.php of the component Authenticated Admin Endpoint. This manipulation of the argument Type causes sql injection.

The identification of this vulnerability is CVE-2026-42847. It is possible to initiate the attack remotely. There is no exploit available.

You should upgrade the affected component.

CVE-2026-42847 | MacWarrior clipbucket-v5 up to up to 5.5.3 Authenticated Admin Endpoint action_logs.php fetch_action_logs Type sql injection (GHSA-x33j-5cqg-vrrc)

Post correlati

CVE-2023-6411 | Voovi Social Networking Script 1.0 home.php update sql injection

CVE-2025-25223 | LuxSoft LuxCal Web Calendar dloader.php path traversal

CVE-2024-7986 | Rockwell ThinManager ThinServer path traversal (ZDI-24-1156)

CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188)