CVE-2021-45745 Exploit Title: Bludit 3.13.1 – About Plugin Stored Cross Site Scripting (XSS)Exploit Author: P.L.SanuCVE: CVE-2021-45745CVSS: 5.4 MEDIUMReferences:https://www.plsanu.com/bludit-3-13-1-about-plugin-stored-cross-site-scripting-xsshttps://nvd.nist.gov/vuln/detail/CVE-2021-45745https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45745 Description:A Stored Cross Site Scripting (XSS) vulnerability exists in Bludit 3.13.1 via the About Plugin in login panel. Application stores attacker injected dangerous JavaScript in to the database and executes without validating. Exploit:1. Login to the admin … Continue reading Bludit 3.13.1 – About Plugin Stored Cross Site Scripting (XSS)