Lucene search
Vasu1337DAY-ID-37052HistoryNov 17, 2021 - 12:00 a.m.
Bludit 3.13.1 - (username) Cross Site Scripting Vulnerability
2021-11-1700:00:00
Vasu
0day.today
323
0.002 Low
EPSS
Percentile
55.8%
# Exploit Title: Bludit 3.13.1 - 'username' Cross Site Scripting (XSS)
# Exploit Author: Vasu (tamilan_mkv)
# Vendor Homepage: https://www.bludit.com
# Software Link: https://www.bludit.com/releases/bludit-3-13-1.zip
# Version: bludit-3-13-1
# Tested on: kali linux
# CVE : CVE-2021-35323
### Steps to reproduce
1. Open login page http://localhost:800/admin/login;
2. Enter the username place ``admin"><img src=x onerror=alert(1)>``and enter the password
3. Trigger the malicious javascript code
Related
nvd
nvd
CVE-2021-35323
2021-10-19 18:15:07
nuclei
nuclei
Bludit 3.13.1 - Cross Site Scripting
2023-10-17 07:20:28
cvelist
cvelist
CVE-2021-35323
2021-10-19 17:21:56
prion
prion
Cross site scripting
2021-10-19 18:15:00
osv
osv
CVE-2021-35323
2021-10-19 18:15:07
cve
cve
CVE-2021-35323
2021-10-19 18:15:07
packetstorm
packetstorm
Bludit 3.13.1 Cross Site Scripting
2021-11-17 00:00:00
exploitdb
exploitdb
Bludit 3.13.1 - 'username' Cross Site Scripting (XSS)
2021-11-17 00:00:00