emlog is a PHP and MySQL-based CMS builder for the individual developers of emlog. emlog has a security vulnerability that originates from an unknown function in admin/article_save.php, which can be exploited by attackers to cause cross-site scripting (XSS) by manipulating the parameter tag.