ClipBucket Unauthenticated Flagging Vulnerability in AJAX System

An authorization bypass vulnerability has been identified in ClipBucket version 5.5.2 prior to 5.5.2 - #164. This vulnerability allows any unauthenticated user to flag various types of content, including users, videos, photos, and collections. The issue arises from the AJAX flagging system, which processes flag requests without verifying user authentication. As a result, this vulnerability can be exploited to conduct mass flagging attacks, disrupt content, and abuse the moderation system.

Impact

Exploitation of this vulnerability allows for unauthorized flagging of content, leading to potential disruption of services and abuse of moderation systems.

Reproduction

The vulnerability can be reproduced by sending a POST request to the 'actions/ajax.php' endpoint with the 'mode' parameter set to 'flag_object', along with the 'type', 'id', and 'flag_type' parameters. This can be done using tools like cURL or through the browser console.

Remediation

Users can update to ClipBucket version 5.5.2 - #164 or later, where this vulnerability has been patched.