Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Very High

Bludit 3.9.2 remote code execution

Disclosure Date: September 08, 2019 (last updated November 27, 2024)
Bludit 3.9.2 allows remote code execution via bl-kernel/ajax/upload-images.php because PHP code can be entered with a .jpg file name, and then this PHP code can write other PHP code to a ../ pathname.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
4
1
Attacker Value
Low

CVE-2019-17240

Disclosure Date: October 06, 2019 (last updated November 27, 2024)
bl-kernel/security.class.php in Bludit 3.9.2 allows attackers to bypass a brute-force protection mechanism by using many different forged X-Forwarded-For or Client-IP HTTP headers.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
1
1
Attacker Value
Unknown

CVE-2020-20210

Disclosure Date: June 26, 2023 (last updated October 08, 2023)
Bludit 3.9.2 is vulnerable to Remote Code Execution (RCE) via /admin/ajax/upload-images.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-16334

Disclosure Date: September 15, 2019 (last updated November 27, 2024)
In Bludit v3.9.2, there is a persistent XSS vulnerability in the Categories -> Add New Category -> Name field. NOTE: this may overlap CVE-2017-16636.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0