CVE-2024-25297

2024-02-1700:00:00

mitre

www.cve.org

cross site scripting

bludit cms

remote attackers

arbitrary code

sensitive information

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

Cross Site Scripting (XSS) vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php.

References

github.com/CpyRe/I-Find-CVE-2024/blob/main/BLUDIT%20Stored%20XSS.md