Lucene search
K

10 matches found

OpenVAS
OpenVAS
added 2020/03/25 12:0 a.m.33 views

ELOG < 3.1.4 DoS Vulnerability

ELOG is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:elogproject:elog";...

7.5CVSS5.5AI score0.03486EPSS
Exploits0References2
OSV
OSV
added 2020/01/10 5:15 a.m.14 views

CVE-2019-20375

A cross-site scripting XSS vulnerability in Electronic Logbook ELOG 3.1.4 allows remote attackers to inject arbitrary web script or HTML via the value parameter in a localization loc command to elogd.c...

6.1CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2020/01/10 5:15 a.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in Electronic Logbook ELOG 3.1.4 allows remote attackers to inject arbitrary web script or HTML via the value parameter in a localization loc command to elogd.c...

4.3CVSS6.1AI score0.00785EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2020/01/10 5:15 a.m.12 views

Cross site scripting

A cross-site scripting XSS vulnerability in Electronic Logbook ELOG 3.1.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG document to elogd.c...

4.3CVSS5.8AI score0.00785EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/10 4:52 a.m.28 views

CVE-2019-20375

A cross-site scripting XSS vulnerability in Electronic Logbook ELOG 3.1.4 allows remote attackers to inject arbitrary web script or HTML via the value parameter in a localization loc command to elogd.c...

6.1AI score0.00785EPSS
Exploits0References1
CVE
CVE
added 2020/01/10 4:52 a.m.88 views

CVE-2019-20375

The CVE-2019-20375 entry applies to Electronic Logbook (ELOG)

6.1CVSS6AI score0.00785EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/10 4:52 a.m.16 views

CVE-2019-20376

A cross-site scripting XSS vulnerability in Electronic Logbook ELOG 3.1.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG document to elogd.c...

5.9AI score0.00785EPSS
Exploits0References1
NVD
NVD
added 2019/12/17 10:15 p.m.18 views

CVE-2019-3993

ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can recover a user's password hash by sending a crafted HTTP POST request...

7.5CVSS7.4AI score0.45698EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/12/17 10:15 p.m.22 views

CVE-2019-3993

ELOG 3.1.4-57bea22 and below is affected by an information disclosure vulnerability. A remote unauthenticated attacker can recover a user's password hash by sending a crafted HTTP POST request...

7.5CVSS7.2AI score0.45698EPSS
Exploits1References2
Cvelist
Cvelist
added 2019/12/17 9:59 p.m.33 views

CVE-2019-3996

ELOG 3.1.4-57bea22 and below can be used as an HTTP GET request proxy when unauthenticated remote attackers send crafted HTTP POST requests...

7AI score0.05879EPSS
Exploits1References3
Rows per page
Query Builder