Auth bypass in Macwarrior Clipbucket-v5

CVE-2026-28354

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, collection item operations are vulnerable to authorization flaws, allowing a normal authenticated user to modify another user’s collection items. This affe…

Vulnerability class: IDOR (Insecure Direct Object Reference)

EPSS: 0.000 (2.6th percentile) — read the EPSS interpretation.