Lucene search
K

13 matches found

Packet Storm
Packet Storm
added 2020/07/27 12:0 a.m.172 views

Bludit 3.9.2 Directory Traversal

Title: Bludit 3.9.2 - Directory Traversal Author: James Green Date: 2020-07-20 Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.9.2 Tested on: Linux Ubuntu 19.10 Eoan CVE: CVE-2019-16113 Special Thanks to Ali Faraj @InfoSecAli and authors of MSF...

6.5CVSS8.7AI score0.77962EPSS
Exploits16
Exploit DB
Exploit DB
added 2020/07/26 12:0 a.m.605 views

Bludit 3.9.2 - Directory Traversal

Title: Bludit 3.9.2 - Directory Traversal Author: James Green Date: 2020-07-20 Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.9.2 Tested on: Linux Ubuntu 19.10 Eoan CVE: CVE-2019-16113 Special Thanks to Ali Faraj @InfoSecAli and authors of MSF...

8.8CVSS8.7AI score0.77962EPSS
Exploits16
GithubExploit
GithubExploit
added 2020/06/09 12:39 p.m.62 views

Exploit for Path Traversal in Bludit

CVE-2019-16113 PoC Bludit = 3.9.2 Remote Code Execution Vuln...

8.8CVSS0.7AI score0.77962EPSS
Exploits16
Packet Storm
Packet Storm
added 2020/06/09 12:0 a.m.510 views

Bludit 3.9.12 Directory Traversal

Exploit Title: Bludit 3.9.12 - Directory Traversal Date: 2020-06-05 Exploit Author: Luis Vacacas Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: = 3.9.12 Tested on: Ubuntu 19.10 CVE : CVE-2019-16113 !/usr/bin/env python3 -- coding: utf-8 -- import...

6.5CVSS8.7AI score0.77962EPSS
Exploits16
0day.today
0day.today
added 2020/06/09 12:0 a.m.89 views

Bludit 3.9.12 - Directory Traversal Vulnerability

Exploit for php platform in category web applications Exploit Title: Bludit 3.9.12 - Directory Traversal Exploit Author: Luis Vacacas Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: = 3.9.12 Tested on: Ubuntu 19.10 CVE : CVE-2019-16113 !/usr/bin/en...

6.5CVSS0.2AI score0.77962EPSS
Exploits16
Exploit DB
Exploit DB
added 2020/06/09 12:0 a.m.1399 views

Bludit 3.9.12 - Directory Traversal

Exploit Title: Bludit 3.9.12 - Directory Traversal Date: 2020-06-05 Exploit Author: Luis Vacacas Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: = 3.9.12 Tested on: Ubuntu 19.10 CVE : CVE-2019-16113 !/usr/bin/env python3 -- coding: utf-8 -- import...

8.8CVSS8.7AI score0.77962EPSS
Exploits16
GithubExploit
GithubExploit
added 2020/06/04 4:6 p.m.96 views

Exploit for Path Traversal in Bludit

CVE-2019-16113 CVE-2019-16113 - bludit = 3...

8.8CVSS0.4AI score0.77962EPSS
Exploits16
GithubExploit
GithubExploit
added 2020/06/03 3:49 p.m.63 views

Exploit for Path Traversal in Bludit

CVE-2019-16113 This is a python implementaiton PoC for the Bl...

8.8CVSS3.1AI score0.77962EPSS
Exploits16
Check Point Advisories
Check Point Advisories
added 2020/02/26 12:0 a.m.11 views

Bludit CMS Arbitrary File Upload (CVE-2019-16113)

An arbitrary file upload vulnerability has been reported in Bludit CMS. This vulnerability is due to improper validation of image uploads by upload-images.php. A remote authenticated attacker could exploit this vulnerability by sending a crafted request to Bludit CMS. Successful exploitation coul...

6.5CVSS3.4AI score0.77962EPSS
Exploits16
Exploit DB
Exploit DB
added 2019/11/20 12:0 a.m.384 views

Bludit - Directory Traversal Image File Upload (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Bludit Directory Traversal Image File Upload Vulnerability", 'Description' = %q This module exploits a vulnerability in Bludit. A remote user cou...

8.8CVSS7.4AI score0.77962EPSS
Exploits16
Circl
Circl
added 2019/11/12 9:52 p.m.40 views

CVE-2019-16113

creationtimestamp| type| source ---|---|--- 2019-11-12 21:52:58+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/bludituploadimagesexec.rb 2019-11-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/47699 2020-06-04 18:18:28+00:00|...

8.8CVSS6.3AI score0.77962EPSS
Exploits16References3
Metasploit
Metasploit
added 2019/11/05 2:57 p.m.68 views

Bludit Directory Traversal Image File Upload Vulnerability

This module exploits a vulnerability in Bludit. A remote user could abuse the uuid parameter in the image upload feature in order to save a malicious payload anywhere onto the server, and then use a custom .htaccess file to bypass the file extension check to finally get remote code execution. Thi...

8.8CVSS7.5AI score0.77962EPSS
Exploits16
CVE
CVE
added 2019/09/08 8:50 p.m.223 views

CVE-2019-16113

CVE-2019-16113 is a Bludit CMS vulnerability that allows remote code execution via an image upload function. In Bludit 3.9.2 and affected builds, the bl-kernel/ajax/upload-images.php flow can treat a crafted image filename (e.g., .jpg or .png) as PHP code, enabling the attacker to write PHP paylo...

8.8CVSS8.8AI score0.77962EPSS
Exploits16References4Affected Software1
Rows per page
Query Builder