PT-2022-8599 · Bludit · Bludit

Zongdeiqianxing

Published

2022-05-11

Updated

2022-05-18

CVE-2020-19228

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions bludit version 3.13.0

Description An issue was found in the unsafe implementation of the backup plugin, allowing attackers to upload arbitrary files.

Recommendations For bludit version 3.13.0, consider disabling the backup plugin until a patch is available to prevent attackers from uploading arbitrary files.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2020-19228

Affected Products

Bludit

PT-2022-8599 · Bludit · Bludit

CVE-2020-19228

Weakness Enumeration

Related Identifiers

Affected Products

References · 5