CVE-2025-64114 is an SQL Injection vulnerability classified under CWE-89, found in the ClipBucket v5 video sharing platform maintained by MacWarrior. The vulnerability affects versions 5.5.2-#151 and earlier, specifically within the ClipBucket Custom Fields plugin. Authenticated users with administrative privileges over plugin management can inject malicious SQL commands due to improper neutralization of special elements in SQL queries. This allows attackers to manipulate the backend database, potentially leading to unauthorized data disclosure or modification. The attack vector requires no user interaction beyond administrative login, and the vulnerability does not require network-level authentication beyond admin privileges. The CVSS 3.1 score is 6.5 (medium), reflecting high confidentiality and integrity impact but no availability impact. The vulnerability is fixed in version 5.5.2-#152. No public exploits have been reported yet, but the risk remains significant due to the high privileges required and the potential damage to database integrity and confidentiality.

For European organizations using ClipBucket v5, especially those deploying the Custom Fields plugin, this vulnerability poses a risk of unauthorized database manipulation by malicious insiders or compromised administrators. The impact includes potential exposure of sensitive user data, alteration of video metadata, or corruption of platform content, undermining trust and compliance with data protection regulations such as GDPR. Although exploitation requires administrative access, insider threats or credential compromise could lead to significant data breaches. The lack of availability impact reduces the risk of service disruption, but data integrity and confidentiality losses could have legal and reputational consequences. Organizations relying on ClipBucket for video sharing or content management should assess their exposure and patch promptly to avoid exploitation.

European organizations should immediately upgrade ClipBucket v5 installations to version 5.5.2-#152 or later, where the vulnerability is patched. If immediate upgrade is not feasible, restrict administrative access to trusted personnel only and enforce strong authentication mechanisms, including multi-factor authentication (MFA). Regularly audit plugin usage and disable or remove the Custom Fields plugin if not required. Implement database activity monitoring to detect anomalous SQL commands indicative of injection attempts. Conduct periodic security reviews of administrative accounts and credentials to prevent insider threats or credential compromise. Additionally, apply the principle of least privilege to limit plugin management rights and segregate duties among administrators. Maintain up-to-date backups to recover from potential data integrity issues.