Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
emlog emlog 6.0.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-16868
emlog up to and including 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter.
Emlog Emlog 6.0.0
Emlog Emlog
5.5
CVSSv2
CVE-2019-17073
emlog up to and including 6.0.0beta allows remote authenticated users to delete arbitrary files via admin/template.php?action=del&tpl=../ directory traversal.
Emlog Emlog 6.0.0
Emlog Emlog
7.5
CVSSv2
CVE-2021-31737
emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php.
Emlog Emlog 5.3.1
Emlog Emlog 6.0.0
6.5
CVSSv2
CVE-2020-21654
emlog v6.0 contains a vulnerability in the component admin\template.php, which allows malicious users to getshell via a crafted Zip file.
Emlog Emlog 6.0.0
7.5
CVSSv2
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Emlog Emlog 6.0.0
6.5
CVSSv2
CVE-2020-21013
emlog v6.0.0 contains a SQL injection via /admin/comment.php.
Emlog Emlog 6.0.0
5.5
CVSSv2
CVE-2020-21014
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php.
Emlog Emlog 6.0.0
NA
CVE-2020-19028
*File Upload vulnerability found in Emlog EmlogCMS v.6.0.0 allows a remote malicious user to gain access to sensitive information via the /admin/plugin.php function.
Emlog Emlog 6.0.0
6.8
CVSSv2
CVE-2018-18316
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI.
Emlog Emlog 6.0.0
4.3
CVSSv2
CVE-2020-21321
emlog v6.0 contains a Cross-Site Request Forgery (CSRF) via /admin/link.php?action=addlink, which allows malicious users to arbitrarily add articles.
Emlog Emlog 6.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
log injection
CVE-2024-37079
type confusion
CVE-2024-32943
CVE-2024-30103
CVE-2024-37350
arbitrary code
CVE-2024-6189
CVE-2024-6225
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »