CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-23765

A file upload vulnerability was discovered in the file path /bl-plugins/backup/plugin.php on Bludit version 3.12.0. If an attacker is able to gain Administrator rights they will be able to use unsafe plugins to upload a backup file and control the server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.5%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.5

References

https://github.com/bludit/bludit/issues/1218
https://github.com/bludit/bludit/issues/1218

Products affected by CVE-2020-23765

Bludit » Bludit » Version: 3.12.0

cpe:2.3:a:bludit:bludit:3.12.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-23765

Products

Pricing

Contact Us