4 matches found
EUVD-2026-24239
Bludit CMS prior to commit 6732dde contains a reflected cross-site scripting vulnerability in the search plugin that allows unauthenticated attackers to inject arbitrary JavaScript by crafting a malicious search query. Attackers can execute malicious scripts in the browsers of users who visit...
CVE-2023-24674
Permissions vulnerability found in Bludit CMS v.4.0.0 allows local attackers to escalate privileges via the role:admin parameter...
Bludit CMS Security Vulnerability
Bludit is an open source lightweight blog content management system CMS. A security vulnerability exists in Bludit CMS version v.4.0.0, which stems from a vulnerability that allows a local attacker to escalate privileges via the role:admin parameter...
Arbitrary File Deletion Vulnerability in Bludit CMS v3.13.0
Bludit CMS is a foreign multilingual lightweight website CMS system. Bludit CMS v3.13.0 has an arbitrary file deletion vulnerability that allows attackers to delete arbitrary zip files...