CVE-2023-31698

Published: May 17, 2023

Modified: Aug 2, 2024

PUBLISHED

Description

Bludit v3.14.1 is vulnerable to Stored Cross Site Scripting (XSS) via SVG file on site logo. NOTE: the product's security model is that users are trusted by the administrator to insert arbitrary content (users cannot create their own accounts through self-registration).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/bludit/bludit/issues/1509

http://packetstormsecurity.com/files/172462/Bludit-CMS-3.14.1-Cross-Site-Scripting.html

https://github.com/bludit/bludit/issues/1212#issuecomment-649514491

https://github.com/bludit/bludit/issues/1369#issuecomment-940806199

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-31698

Description

Affected Products

References