CVE-2012-6643
NONE EPSS 74.0%
Published Apr 8, 201412y ago · Modified Jun 16, 20262w ago
Published Apr 8, 2014 12y ago
Last Modified Jun 16, 2026 2w ago
Description
Multiple SQL injection vulnerabilities in the update_counter function in includes/functions.php in ClipBucket 2.6 allow remote attackers to execute arbitrary SQL commands via the time parameter to (1) videos.php or (2) channels.php. NOTE: some of these details are obtained from third party information.
Threat Intelligence
EPSS Exploit Probability
74.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-89 SQL Injection Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| clip-bucket | clipbucket | 2.6 | any |
References 6
- osvdb.org http://osvdb.org/78201
- osvdb.org http://osvdb.org/78202
- packetstormsecurity.org http://packetstormsecurity.org/files/108489/clipbucket-sqlxss.txt
- secunia.com http://secunia.com/advisories/47474
- securityfocus.com http://www.securityfocus.com/bid/51321
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/72245
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.