2 matches found
CVE-2020-15026
Bludit 3.12.0 allows admins to use a /plugin-backup-download?file=../ directory traversal approach for arbitrary file download via backup/plugin.php...
CVE-2020-15026
CVE-2020-15026 affects Bludit 3.12.0, where a directory traversal flaw in backup/plugin.php can be triggered via the /plugin-backup-download?file=../ parameter to enable arbitrary file download. The cited sources describe the vulnerability as a path traversal in the Bludit backup plugin, enabling...