Permissions Vulnerability in Bludit CMS by Bludit

CVE-2023-24674

What is CVE-2023-24674?

A permissions vulnerability in Bludit CMS version 4.0.0 allows attackers with local access to escalate their privileges. By exploiting the role:admin parameter, an attacker can gain unauthorized access to admin-level features, posing significant risks to system integrity and user data. This flaw highlights the critical importance of securing access controls in content management systems.

References