Bludit is an open source, lightweight blog content management system (CMS). A cross-site scripting vulnerability exists in Bludit version v3.14.1. The vulnerability stems from the application’s lack of effective filtering and escaping of user-supplied data, which can be exploited by an attacker to execute arbitrary Web script or HTML by injecting a carefully crafted payload.
CPE | Name | Operator | Version |
---|---|---|---|
bludit bludit v | eq | 3.14.1 |