CVE-2023-34845

EPSS 0.61% · P70 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-34845

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Bludit v3.14.1 was discovered to contain an arbitrary file upload vulnerability in the component /admin/new-content. This vulnerability allows attackers to execute arbitrary web scripts or HTML via uploading a crafted SVG file. NOTE: the product's security model is that users are trusted by the administrator to insert arbitrary content (users cannot create their own accounts through self-registration).

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Bludit 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Bludit是一套开源的轻量级博客内容管理系统（CMS）。 Bludit v3.14.1版本存在安全漏洞，该漏洞源于组件 /admin/new-content 中包含一个任意文件上传漏洞，允许攻击者通过上传特制的 SVG 文件来执行任意 Web 脚本或 HTML。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-34845

#	POC Description	Source Link	Shenlong Link
1	Vulnerability POC for CVE-2023-34845	https://github.com/r4vanan/CVE-2023-34845	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-34845

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-06-16 · 30 CVEs total

CVE-2023-35782	8.2 HIGH	TYPO3 SQL注入漏洞
CVE-2023-35783	6.3 MEDIUM	TYPO3 跨站脚本漏洞
CVE-2023-25187	6.3 MEDIUM	Nokia Airscale ASIKA Single RAN 信任管理问题漏洞
CVE-2023-25188	5.1 MEDIUM	Nokia Airscale ASIKA Single RAN 安全漏洞
CVE-2023-25186	5.1 MEDIUM	Nokia Airscale ASIKA Single RAN 路径遍历漏洞
CVE-2023-25185	3.8 LOW	NOKIA Airscale ASIKA Single RAN 安全漏洞
CVE-2023-34832		TP-LINK Archer AX10 安全漏洞
CVE-2023-35708		Progress Software MOVEit Transfer SQL注入漏洞
CVE-2023-34474		ImageMagick 缓冲区错误漏洞
CVE-2023-34475		ImageMagick 资源管理错误漏洞
CVE-2023-35784		OpenBSD 资源管理错误漏洞
CVE-2023-3195		ImageMagick 缓冲区错误漏洞
CVE-2023-33438		Wolters Kluwer TeamMate+ 跨站脚本漏洞
CVE-2023-35788		Linux kernel 缓冲区错误漏洞
CVE-2023-35789		rabbitmq-c 安全漏洞
CVE-2023-35790		libjxl 数字错误漏洞
CVE-2023-34645		jfinal cms 安全漏洞
CVE-2023-34659		Jeecg-Boot SQL注入漏洞
CVE-2023-34660		jjeecg-boot 代码问题漏洞
CVE-2023-34548		Simple Customer Relationship Management SQL注入漏洞

Showing top 20 of 30 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-34845

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-34845

I. Basic Information for CVE-2023-34845

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-34845

III. Intelligence Information for CVE-2023-34845

Same Patch Batch · n/a · 2023-06-16 · 30 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-34845

Leave a comment