Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2020-18879
Disclosure Date: August 20, 2021 (last updated February 23, 2025)
Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via the component 'bl-kereln/ajax/upload-logo.php'.
0
Attacker Value
Unknown
CVE-2020-18190
Disclosure Date: October 02, 2020 (last updated February 22, 2025)
Bludit v3.8.1 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /admin/ajax/upload-profile-picture.
0
