CVE-2019-12548

Published: Jun 3, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

Bludit before 3.9.0 allows remote code execution for an authenticated user by uploading a php file while changing the logo through /admin/ajax/upload-logo.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/bludit/bludit/compare/5e5957c...77e85e7

x_refsource_MISC

https://github.com/bludit/bludit/releases/tag/3.9.0

x_refsource_CONFIRM

https://github.com/bludit/bludit/commit/d0843a4070c7d7fa596a7eb2130be15383013487

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-12548

Description

Affected Products

References