2023-05-17 00:00:00
mitre
PUBLISHED
Bludit v3.14.1 is vulnerable to Stored Cross Site Scripting (XSS) via SVG file on site logo. NOTE: the products security model is that users are trusted by the administrator to insert arbitrary content (users cannot create their own accounts through self-registration).