[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-45418":3,"news-by-cve-CVE-2026-45418-10":53},{"id":4,"assigner_short_name":5,"cvss_source":6,"affected_product_count":7,"weaknesses":8,"vendor_context":11,"source_identifier":18,"nvd_cvss_vector":19,"remediation_summary":20,"has_ai_summary":21,"title":22,"date_published":23,"cvss_version":24,"kev_ransomware_use":21,"has_solution":21,"exploit_count":25,"date_updated":26,"cvss_score":27,"cvss_severity":28,"in_kev":21,"has_workaround":21,"description":29,"affected_products_preview":30,"attack_techniques":35,"attack_technique_count":7,"nuclei_template_count":25,"tags":43,"references_preview":44,"has_nuclei_templates":21,"assigner_org":5,"reference_count":7,"attack_tactics":48,"has_attack_graph":49,"nvd_cvss_score":27,"nvd_cvss_severity":28,"has_exploit":21,"sources":50,"state":51,"cvss_vector":19,"sectors":52},"CVE-2026-45418","","nvd",1,[9],{"cwe_id":10,"name":5},"CWE-89",[12],{"vendor":13,"vendor_type":14,"aliases":15,"sector":16,"subsector":17},"macwarrior","commercial",[],"web-cms-plugins","cms-core","a0819718-46f1-4df5-94e2-005712e83aaa","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",{"has_patch":21,"has_workaround":21},false,"ClipBucket: Blind SQL Injection in subtitle_edit.php","2026-06-11T22:48:32Z","3.1",0,"2026-06-11T23:16:23Z",8.8,"HIGH","ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #132, any authenticated user who can upload videos can add multiple subtitles from different files and change their title (English, Spanish...). The POST /actions/subtitle_edit.php request used to change their title includes a number parameter which is vulnerable to SQL Injection. A boolean-based blind SQL injection can be used to exfiltrate sensitive data. This issue has been patched in version 5.5.3 - #132.",[31],{"vendor":32,"product":33,"sector":16,"subsector":17,"deployment":34},"MacWarrior","clipbucket-v5","mixed",[36],{"technique_id":37,"technique_name":38,"tactic":39,"tactic_name":40,"url":41,"confidence":42},"T1190","Exploit Public-Facing Application","initial-access","Initial Access","https://attack.mitre.org/techniques/T1190/","high",[],[45],{"url":46,"source":47},"https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-q233-m544-6jqr","cvelist",[40],true,[47,6],"PUBLISHED",[16],{"cve_id":4,"items":54,"total":25},[]]