CVE-2026-50869

Description

An issue in the api/plugin.php component of Bludit v3.19.0 allows attackers to execute a directory traversal via supplying a crafted request.

PUBLISHED Reserved 2026-06-07 | Published 2026-06-15 | Updated 2026-06-16 | Assigner mitre

References

gist.github.com/pyuysig/95931ed2140f3bd85dc67057dd23a47f exploit

gist.github.com/pyuysig/95931ed2140f3bd85dc67057dd23a47f

cve.org (CVE-2026-50869)

nvd.nist.gov (CVE-2026-50869)

Download JSON