2 matches found
Emlog blog system has an arbitrary file deletion vulnerability
emlog is a PHP and MySQL based blog and CMS builder. There is an arbitrary file deletion vulnerability in the Emlog blog system. The vulnerability is due to the program on the parameters of the filter is not strict due to the attacker by adding a malicious payload execution, you can delete...
emlog 4.1.0 敏感信息泄漏漏洞
emlog是一款基于PHP和MySQL平台的功能强大的个人博客系统blog,该版本存在敏感信息泄漏的漏洞。 泄露作者名称: http://site/content/cache/user 泄露配置信息 http://site/content/cache/options 漏洞证明 修复方案: 升级最新官方版本,官方链接:www.emlog.net...