An issue was discovered in emlog 6.0.0stable. There is a SQL Injection vulnerability that can execute any SQL statement and query server sensitive data via admin/navbar.php?action=add_page.
CPE | Name | Operator | Version |
---|---|---|---|
emlog | eq | 5.3.1 | |
emlog | eq | emlog_5.2.0 | |
emlog | eq | emlog_5.2.1 | |
emlog | eq | 6.0.0 | |
emlog | eq | emlog_5.3.0 | |
emlog | eq | emlog_5.1.3 | |
emlog | eq | emlog_5.1.2 |