Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emlog emlog vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-41621
A Cross Site Scripting (XSS) vulnerability exists in Emlog Pro v2.1.14 via the component /admin/store.php.
Emlog Emlog 2.1.14
7.2
CVSSv3
CVE-2023-41623
Emlog version pro2.1.14 exists to contain a SQL injection vulnerability via the uid parameter at /admin/media.php.
Emlog Emlog 2.1.14
1 Github repository
8.8
CVSSv3
CVE-2018-18316
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI.
Emlog Emlog 6.0.0
6.5
CVSSv3
CVE-2020-21014
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php.
Emlog Emlog 6.0.0
9.8
CVSSv3
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Emlog Emlog 6.0.0
9.8
CVSSv3
CVE-2022-23379
Emlog v6.0 exists to contain a SQL injection vulnerability via the $TagID parameter of getblogidsfromtagid().
Emlog Emlog 6.0.0
9.8
CVSSv3
CVE-2021-40883
A Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins.
Emlog Emlog 5.3.1
4.3
CVSSv3
CVE-2020-21321
emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows malicious users to arbitrarily add articles.
Emlog Emlog 6.0.0
7.2
CVSSv3
CVE-2020-21654
emlog v6.0 contains a vulnerability in the component admin\template.php, which allows malicious users to getshell via a crafted Zip file.
Emlog Emlog 6.0.0
5.3
CVSSv3
CVE-2021-3293
emlog v5.3.1 has full path disclosure vulnerability in t/index.php, which allows an malicious user to see the path to the webroot/file.
Emlog Emlog 5.3.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »