Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hi,I found a code execution vulnerability in Bludit v3.13.1 admin panel
the path is bl-plugins/backup/plugin.php
1, Log in to the admin panel
2, Click the backups button
3, Making evil backup zip
First download a backup
then use this zip to modify
Place phpinfo.php file in path 2021-01-05-16-20-03\uploads\pages
Package 2021-01-05-16-20-03 as evil.zip
Execute the script to generate the md5 for the .BLUDIT_BACKUP
4, upload the evil backup zip
5, Click the restore backup button
6, Access the evil file bl-content/uploads/pages/phpinfo.php
The text was updated successfully, but these errors were encountered:
@dignajar
Sorry, something went wrong.
Hi, yes was already mentioned here. #1242
No branches or pull requests
Hi,I found a code execution vulnerability in Bludit v3.13.1 admin panel
the path is bl-plugins/backup/plugin.php
1, Log in to the admin panel

2, Click the backups button

3, Making evil backup zip
First download a backup
then use this zip to modify
Place phpinfo.php file in path 2021-01-05-16-20-03\uploads\pages
Package 2021-01-05-16-20-03 as evil.zip
Execute the script to generate the md5 for the .BLUDIT_BACKUP

4, upload the evil backup zip
5, Click the restore backup button
6, Access the evil file bl-content/uploads/pages/phpinfo.php
The text was updated successfully, but these errors were encountered: