[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-49482":3,"news-by-cve-CVE-2026-49482-10":47},{"affected_products_preview":4,"assigner_org":11,"cvss_severity":12,"has_workaround":13,"has_attack_graph":13,"cvss_score":14,"kev_ransomware_use":13,"exploit_count":15,"reference_count":16,"assigner_short_name":11,"cvss_version":17,"nvd_cvss_severity":11,"cvss_source":18,"references_preview":19,"sources":22,"state":23,"has_solution":13,"vendor_context":24,"has_nuclei_templates":13,"date_updated":29,"source_identifier":30,"in_kev":13,"has_exploit":13,"attack_technique_count":15,"nuclei_template_count":15,"sectors":31,"date_published":29,"cvss_vector":32,"nvd_cvss_vector":11,"description":33,"weaknesses":34,"tags":41,"has_ai_summary":13,"id":42,"title":43,"attack_techniques":44,"affected_product_count":16,"attack_tactics":45,"remediation_summary":46},[5],{"deployment":6,"vendor":7,"product":8,"sector":9,"subsector":10},"mixed","MacWarrior","clipbucket-v5","web-cms-plugins","cms-core","","MEDIUM",false,4.3,0,1,"3.1","cvelist",[20],{"url":21,"source":18},"https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-wv43-277p-737c",[18],"PUBLISHED",[25],{"vendor":26,"vendor_type":27,"aliases":28,"sector":9,"subsector":10},"macwarrior","commercial",[],"2026-06-11T22:55:17Z","a0819718-46f1-4df5-94e2-005712e83aaa",[9],"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N","ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #141, ClipBucket v5 contains an improper neutralization of SQL wildcard characters in the subtitle editing endpoint. An authenticated user can send a % character as the number parameter to overwrite all subtitle titles of any video they own in a single HTTP request. This issue has been patched in version 5.5.3 - #141.",[35,38],{"cwe_id":36,"name":37},"CWE-155","CWE-155: Improper Neutralization of Wildcards or Matching Symbols",{"cwe_id":39,"name":40},"CWE-943","CWE-943: Improper Neutralization of Special Elements in Data Query Logic",[],"CVE-2026-49482","ClipBucket: SQL Wildcard Injection in Subtitle Edit Endpoint Allows Mass Subtitle Overwrite",[],[],{"has_patch":13,"has_workaround":13},{"cve_id":42,"items":48,"total":15},[]]