Cross Site Scripting (XSS) vulnerability in emlog version Pro 2.3, allow remote malicious users to execute arbitrary code via a crafted payload to the bottom of the homepage in footer_info parameter.