Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
bludit version 3.0.0 contains a Unrestricted Upload of File with Dangerous Type vulnerability in Content Upload in Pages Editor that can result in Remote Command Execution. This attack appear to be exploitable via malicious user have to upload a crafted payload containing PHP code.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bludit Pages Editor 安全漏洞
Vulnerability Description
Bludit是一套开源免费的轻量级博客CMS(内容管理系统)系统。Pages Editor是其中的一个页面编辑器。 Bludit 3.0.0版本中的Pages Editor的内容上传功能存在安全漏洞,该漏洞源于程序没有限制危险类型文件的上传。远程攻击者可借助带有PHP代码的特制负载利用该漏洞执行命令。
CVSS Information
N/A
Vulnerability Type
N/A