CVE-2024-25297

2024-02-1700:00:00

mitre

github.com

bludit cms

cross site scripting

remote attackers

arbitrary code

sensitive information

edit-content.php

cve-2024-25297

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.2%

JSON

Cross Site Scripting (XSS) vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php.

References

github.com/CpyRe/I-Find-CVE-2024/blob/main/BLUDIT%20Stored%20XSS.md