CVE-2021-45744 Exploit Title: Bludit 3.13.1 – TAGS Field Stored Cross Site Scripting (XSS)Exploit Author: P.L.SanuCVE: CVE-2021-45744CVSS: 5.4 MEDIUMReferences:https://www.plsanu.com/bludit-3-13-1-tags-field-stored-cross-site-scripting-xsshttps://nvd.nist.gov/vuln/detail/CVE-2021-45744https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45744 Description:A Stored Cross Site Scripting (XSS) vulnerability exists in bludit 3.13.1 via the TAGS section in login panel. Application stores attacker injected dangerous JavaScript in to the database and executes without validating. Exploit:1. Login to the admin … Continue reading Bludit 3.13.1 – TAGS Field Stored Cross Site Scripting (XSS)