Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-49482: CWE-155: Improper Neutralization of Wildcards or Matching Symbols in MacWarrior clipbucket-v5CVE-2026-49482 0 ClipBucket v5 prior to version 5.5.3 contains a vulnerability in the subtitle editing endpoint where improper neutralization of SQL wildcard characters allows an authenticated user to overwrite all subtitle titles of any video they own by sending a % character as the number parameter. This issue has been fixed in version 5.5.3. Join the discussion | CVE Database V5 | 06/11/2026, 22:55:17 UTC Added: 06/11/2026, 23:30:07 UTC |
CVE-2026-47238: CWE-639: Authorization Bypass Through User-Controlled Key in MacWarrior clipbucket-v5CVE-2026-47238 0 ClipBucket v5 versions prior to 5.5.3 contain an authorization bypass vulnerability allowing authenticated users to edit subtitles of other users' videos. This includes uploading, editing subtitle names, or deleting them. The issue is fixed in version 5.5.3. Join the discussion | CVE Database V5 | 06/11/2026, 22:53:17 UTC Added: 06/11/2026, 23:00:06 UTC |
CVE-2026-45418: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in MacWarrior clipbucket-v5CVE-2026-45418 0 ClipBucket v5, an open source video sharing platform, has a high severity SQL Injection vulnerability (CVE-2026-45418) in versions prior to 5.5.3 - #132. Authenticated users who can upload videos may exploit a boolean-based blind SQL injection via the number parameter in the subtitle editing POST request to exfiltrate sensitive data. This vulnerability has been patched in version 5.5.3 - #132. Join the discussion | CVE Database V5 | 06/11/2026, 22:48:32 UTC Added: 06/11/2026, 23:00:06 UTC |
CVE-2026-45060: CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in MacWarrior clipbucket-v5CVE-2026-45060 0 ClipBucket v5 prior to version 5.5.3 contains a critical blind SQL injection vulnerability in the actions/progress_video.php endpoint. This flaw allows unauthenticated attackers to exploit the ids parameter to execute arbitrary SQL queries, potentially leading to sensitive data exfiltration. The vulnerability has been patched in version 5.5.3. Join the discussion | CVE Database V5 | 06/11/2026, 22:51:47 UTC Added: 06/11/2026, 23:00:06 UTC |
CVE-2026-42846: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') in MacWarrior clipbucket-v5CVE-2026-42846 0 ClipBucket v5 prior to version 5.5.3 contains an OS command injection vulnerability in its Remote Play feature. Authenticated users can add videos by importing external URLs, which are concatenated directly into shell commands without proper escaping. This allows execution of arbitrary commands on the server. The vulnerability has been patched in version 5.5.3. Join the discussion | CVE Database V5 | 06/11/2026, 22:49:58 UTC Added: 06/11/2026, 23:00:06 UTC |
Showing 1 to 5 of 5 results