Lucene search
K

242 matches found

Prion
Prion
added 2017/06/27 8:29 p.m.18 views

Code injection

elog 3.1.1 allows remote attackers to post data as any username in the logbook...

5CVSS7AI score0.01024EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2017/06/27 8:0 p.m.24 views

CVE-2016-6342

elog 3.1.1 allows remote attackers to post data as any username in the logbook...

7.4AI score0.01024EPSS
Exploits0References2
CVE
CVE
added 2017/06/27 8:0 p.m.71 views

CVE-2016-6342

Summary: CVE-2016-6342 affects the Erlang logging library elog version 3.1.1, enabling remote attackers to publish data in the logbook under any username. This is documented across multiple sources, including NVD/NIST, CNVD, OSV, and vendor advisories. Impact: Allows a remote attacker to post dat...

7.5CVSS7.3AI score0.01024EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2017/06/27 12:0 a.m.4 views

PT-2017-8970 · Elog · Elog

Name of the Vulnerable Software and Affected Versions: elog version 3.1.1 Description: The issue allows remote attackers to post data as any username in the logbook. Recommendations: For elog version 3.1.1, at the moment, there is no information about a newer version that contains a fix for this...

7.5CVSS7.3AI score0.01024EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2016/12/07 12:0 a.m.22 views

Fedora Update for elog FEDORA-2016-348a7b6285

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/11/15 12:0 a.m.26 views

Fedora 25 : elog (2016-348a7b6285)

Security fix for CVE-2016-6342 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.5CVSS7.2AI score0.01024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/12 12:0 a.m.19 views

Fedora 23 : elog (2016-820a4795a9)

Security fix for CVE-2016-6342 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.5CVSS7.1AI score0.01024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/12 12:0 a.m.22 views

Fedora 24 : elog (2016-508767e6b7)

Security fix for CVE-2016-6342 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

7.5CVSS7.1AI score0.01024EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/09/10 12:0 a.m.27 views

Fedora Update for elog FEDORA-2016-508767e6b7

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01024EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/09/10 12:0 a.m.23 views

Fedora Update for elog FEDORA-2016-820a4795a9

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.5AI score0.01024EPSS
Exploits0References2
Fedora
Fedora
added 2016/09/09 4:57 p.m.39 views

[SECURITY] Fedora 23 Update: elog-3.1.1-7.fc23

ELOG is part of a family of applications known as weblogs. Their general purpose is: 1. To make it easy for people to put information online in a chronological fashion, in the form of short, time-stamped text messages "entries" with optional HTML markup for presentation, and optional file...

7.5CVSS0.01024EPSS
Exploits0
Fedora
Fedora
added 2016/09/04 5:43 p.m.31 views

[SECURITY] Fedora 25 Update: elog-3.1.1-7.fc25

ELOG is part of a family of applications known as weblogs. Their general purpose is: 1. To make it easy for people to put information online in a chronological fashion, in the form of short, time-stamped text messages "entries" with optional HTML markup for presentation, and optional file...

7.5CVSS0.01024EPSS
Exploits0
Openbugbounty
Openbugbounty
added 2016/03/04 7:26 a.m.13 views

elog-ch.net XSS vulnerability

Vulnerable URL: http://elog-ch.net/?m=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13639 Google Pagerank| 4 VIP website status:| Yes...

6.3AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/03/03 5:0 a.m.13 views

elog-ch.net XSS vulnerability

Vulnerable URL: http://elog-ch.net/?y=%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13639 Google Pagerank| 4 VIP website status:| Yes...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

ELOG <= 2.5.6 - Remote Shell Exploit

No description provided by source. / Worked on latest version for me http://midas.psi.ch/elog/download/tar/elog-latest.tar.gz elog-latest.tar.gz 26-Jan-2005 21:36 519K Default port 8080. str0ke / / Hi there, someone has brought to u a gift. ELOG Remote Shell Exploit = 2.5.6 Also for future Versio...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.19 views

ELOG Logbook Cross Site Scripting Vulnerability

This host has ELOG installed and is prone to cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodelogxssvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ ELOG Logbook Cross Site Scripting Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 SecPod, http://www.secpod.com...

4.3CVSS6.3AI score0.00884EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/09/15 12:0 a.m.17 views

ELOG < 2.7.2 XSS Vulnerability

ELOG is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elogproject:elog";...

4.3CVSS6.1AI score0.00884EPSS
Exploits0References3
NVD
NVD
added 2009/09/11 4:30 p.m.19 views

CVE-2008-7206

Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...

4.3CVSS5.8AI score0.00884EPSS
Exploits0References4
Prion
Prion
added 2009/09/11 4:30 p.m.18 views

Cross site scripting

Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...

4.3CVSS6.3AI score0.00884EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/09/11 4:0 p.m.20 views

CVE-2008-7206

Unspecified vulnerability in Electronic Logbook ELOG before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting XSS...

5.8AI score0.00884EPSS
Exploits0References4
Rows per page
Query Builder