Vulnerabilities > Bludit > Low

DATE CVE VULNERABILITY TITLE RISK
2022-05-05 CVE-2022-1590 Cross-site Scripting vulnerability in Bludit 3.13.1
A vulnerability was found in Bludit 3.13.1.
network
bludit CWE-79
3.5
3.5
2022-01-06 CVE-2021-45745 Cross-site Scripting vulnerability in Bludit
A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit 3.13.1 via the About Plugin in login panel.
network
bludit CWE-79
3.5
3.5
2022-01-06 CVE-2021-45744 Cross-site Scripting vulnerability in Bludit
A Stored Cross Site Scripting (XSS) vulnerability exists in bludit 3.13.1 via the TAGS section in login panel.
network
bludit CWE-79
3.5
3.5
2020-06-24 CVE-2020-15006 Cross-site Scripting vulnerability in Bludit 3.12.0
Bludit 3.12.0 allows stored XSS via JavaScript code in an SVG document to bl-kernel/ajax/logo-upload.php.
network
bludit CWE-79
3.5
3.5
2020-06-06 CVE-2020-13889 Cross-site Scripting vulnerability in Bludit 3.12.0
showAlert() in the administration panel in Bludit 3.12.0 allows XSS.
network
bludit CWE-79
3.5
3.5
2019-09-15 CVE-2019-16334 Cross-site Scripting vulnerability in Bludit 3.9.2
In Bludit v3.9.2, there is a persistent XSS vulnerability in the Categories -> Add New Category -> Name field.
network
bludit CWE-79
3.5
3.5
2017-11-06 CVE-2017-16636 Cross-site Scripting vulnerability in Bludit 1.5.2/2.0.1
In Bludit v1.5.2 and v2.0.1, an XSS vulnerability is located in the new page, new category, and edit post function body message context.
network
bludit CWE-79
3.5
3.5