bludit

Top products

The 15 most recently published vulnerabilities affecting bludit.

• CVE-2026-46657Bludit's persistent authentication tokens not revoked upon account disablement7.1Jun 8, 2026
• CVE-2026-46656Bludit CMS has improper authorization and mediation failure leading to persistent ghost sessions8.8Jun 8, 2026
• CVE-2026-4420Stored XSS via Page Creating functionality in Bludit5.4Apr 7, 2026
• CVE-2026-25099Remote Code Execution via Unrestricted File Upload in Bludit8.8Mar 27, 2026
• CVE-2026-25100Stored XSS via SVG File Upload in Bludit5.4Mar 27, 2026
• CVE-2026-25101Session Fixation in Bludit9.8Mar 27, 2026
• CVE-2026-27741Bludit <= 3.16.1 CSRF in Plugin and Theme Management Endpoints4.3Feb 23, 2026
• CVE-2026-27742Bludit <= 3.16.2 Stored XSS in Post Content5.4Feb 23, 2026
• CVE-2023-53907Bludit 3.13.1 Authenticated Arbitrary File Download via Backup Plugin6.5Dec 17, 2025
• CVE-2024-24554Bludit - Insecure Token Generation8.2Jun 24, 2024
• CVE-2024-24553Bludit uses SHA1 as Password Hashing Algorithm7.5Jun 24, 2024
• CVE-2024-24552Bludit is Vulnerable to Session Fixation8.8Jun 24, 2024
• CVE-2024-24551Bludit - Remote Code Execution (RCE) through Image API8.8Jun 24, 2024
• CVE-2024-24550Bludit - Remote Code Execution (RCE) through File API8.1Jun 24, 2024
• CVE-2024-25297Cross Site Scripting (XSS) vulnerability in Bludit CMS version 3.15, allows remote attackers to execute arbitrary code and obtain sensitive information via edit-content.php.4.8Feb 17, 2024