Known Vulnerabilities for Bludit by Bludit
Listed below are 10 of the newest known vulnerabilities associated with the software "Bludit" by "Bludit".
These CVEs are retrieved based on exact matches on listed software and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
CVE | Shortened Description | Severity | Publish Date | Last Modified |
---|---|---|---|---|
CVE-2021-35323 | Cross Site Scripting (XSS) vulnerability exists in bludit 3-13-1 via the username in admin/login. | 6.1 - MEDIUM | 2021-10-19 | 2021-11-30 |
CVE-2021-25808 | A code injection vulnerability in backup/plugin.php of Bludit 3.13.1 allows attackers to execute arbitrary code via a crafted... | 7.8 - HIGH | 2021-07-23 | 2021-08-02 |
CVE-2020-19228 | An issue was found in bludit v3.13.0, unsafe implementation of the backup plugin allows attackers to upload arbitrary files. | 7.2 - HIGH | 2022-05-11 | 2022-05-18 |
CVE-2020-18879 | Unrestricted File Upload in Bludit v3.8.1 allows remote attackers to execute arbitrary code by uploading malicious files via ... | 9.8 - CRITICAL | 2021-08-20 | 2021-08-24 |
CVE-2020-18190 | Bludit v3.8.1 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /admin/ajax/upload-... | 9.1 - CRITICAL | 2020-10-02 | 2020-10-09 |
CVE-2020-15026 | Bludit 3.12.0 allows admins to use a /plugin-backup-download?file=../ directory traversal approach for arbitrary file downloa... | 4.9 - MEDIUM | 2020-06-24 | 2020-06-30 |
CVE-2020-15006 | Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php. | 5.4 - MEDIUM | 2020-06-24 | 2020-07-02 |
CVE-2020-13889 | showAlert() in the administration panel in Bludit 3.12.0 allows XSS. | 5.4 - MEDIUM | 2020-06-06 | 2020-06-09 |
CVE-2020-8812 | ** DISPUTED ** Bludit 3.10.0 allows Editor or Author roles to insert malicious JavaScript on the WYSIWYG editor. NOTE: the ve... | 5.4 - MEDIUM | 2020-02-07 | 2020-02-10 |
CVE-2020-8811 | ajax/profile-picture-upload.php in Bludit 3.10.0 allows authenticated users to change other users' profile pictures. | 4.3 - MEDIUM | 2020-02-07 | 2020-02-10 |
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Application | Bludit | Bludit | 3.9.2 | All | All | All |
Application | Bludit | Bludit | 3.9.1 | All | All | All |
Application | Bludit | Bludit | 3.9.0 | All | All | All |
Application | Bludit | Bludit | 3.8.1 | All | All | All |
Application | Bludit | Bludit | 3.5.0 | All | All | All |
Application | Bludit | Bludit | 3.4.0 | - | All | All |
Application | Bludit | Bludit | 3.4.0 | beta1 | All | All |
Application | Bludit | Bludit | 3.3.0 | All | All | All |
Application | Bludit | Bludit | 3.2.0 | All | All | All |
Application | Bludit | Bludit | 3.12.0 | All | All | All |
Application | Bludit | Bludit | 3.11.0 | - | All | All |
Application | Bludit | Bludit | 3.11.0 | a | All | All |
Application | Bludit | Bludit | 3.10.0 | - | All | All |
Application | Bludit | Bludit | 3.10.0 | alpha | All | All |
Application | Bludit | Bludit | 3.1.0 | All | All | All |
Application | Bludit | Bludit | 3.0.0 | alpha5 | All | All |
Application | Bludit | Bludit | 3.0.0 | - | All | All |
Application | Bludit | Bludit | 3.0.0 | alpha1 | All | All |
Application | Bludit | Bludit | 3.0.0 | alpha2 | All | All |
Application | Bludit | Bludit | 3.0.0 | alpha3 | All | All |
Popular searches for Bludit
Bludit - Flat-File CMS

Bludit - Flat-File CMS Bludit is a web application to build your own website or blog in seconds, it's completely free and open source. Markdown support. bludit.com
Flat-file database Content management system Markdown Plug-in (computing) Website Blog Search engine optimization Free and open-source software Web application Download Theme (computing) Database JSON Installation (computer programs) GitHub Documentation Computer file Configure script Web search engine WYSIWYGbludit/bludit

bludit/bludit Simple, Fast, Secure, Flat-File CMS. Contribute to bludit GitHub.
github.com/dignajar/bludit GitHub Content management system PHP Flat-file database Web server JSON Adobe Contribute Blog Modular programming Software release life cycle Patreon Installation (computer programs) Docker (software) Computer file Command-line interface Bluetooth Xcode Microsoft Visual Studio Repository (version control) Software repository