elog 3.1.1 allows remote malicious users to post data as any username in the logbook.
fedoraproject fedora 24
elog project elog 3.1.1