Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Bludit v3.14.1 was discovered to contain an arbitrary file upload vulnerability in the component /admin/new-content. This vulnerability allows attackers to execute arbitrary web scripts or HTML via uploading a crafted SVG file. NOTE: the product's security model is that users are trusted by the administrator to insert arbitrary content (users cannot create their own accounts through self-registration).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bludit 代码问题漏洞
Vulnerability Description
Bludit是一套开源的轻量级博客内容管理系统(CMS)。 Bludit v3.14.1版本存在安全漏洞,该漏洞源于组件 /admin/new-content 中包含一个任意文件上传漏洞,允许攻击者通过上传特制的 SVG 文件来执行任意 Web 脚本或 HTML。
CVSS Information
N/A
Vulnerability Type
N/A