Описание
Bludit v3.14.1 is vulnerable to Stored Cross Site Scripting (XSS) via SVG file on site logo. NOTE: the product's security model is that users are trusted by the administrator to insert arbitrary content (users cannot create their own accounts through self-registration).
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Exploit
- ExploitThird Party AdvisoryVDB Entry
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:bludit:bludit:3.14.1:*:*:*:*:*:*:*
EPSS
Процентиль: 58%
0.00363
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
больше 2 лет назад
Bludit v3.14.1 is vulnerable to Stored Cross Site Scripting (XSS) via SVG file on site logo.
EPSS
Процентиль: 58%
0.00363
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79