← Back to CVE List
CVE-2020-18190
Published:
2020-10-02T14:15Z
Last Modified:
2024-11-21T05:08Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
Bludit v3.8.1 is affected by directory traversal. Remote attackers are able to delete arbitrary files via /admin/ajax/upload-profile-picture. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt