Unrated severityOSV Advisory· Published Dec 17, 2025· Updated Apr 7, 2026
Bludit 3.13.1 Authenticated Arbitrary File Download via Backup Plugin
CVE-2023-53907
Description
Bludit versions before 3.13.1 contain an authenticated file download vulnerability in the Backup Plugin that allows logged-in users to access arbitrary files. Attackers can exploit the plugin's download functionality by manipulating file path parameters to read sensitive system files through directory traversal.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/51541mitreexploit
- www.vulncheck.com/advisories/bludit-authenticated-arbitrary-file-download-via-backup-pluginmitrethird-party-advisory
- www.bludit.commitreproduct
News mentions
0No linked articles in our index yet.