2 matches found
CVE-2025-29405
An arbitrary file upload vulnerability in the component /admin/template.php of emlog pro 2.5.0 and pro 2.5. allows attackers to execute arbitrary code via uploading a crafted PHP file...
CVE-2025-29405
CVE-2025-29405 describes an arbitrary file upload vulnerability in the EMLog Pro CMS. Affected: emlog pro versions 2.5.0 and 2.5.*. Vulnerable component: in the /admin/template.php endpoint, allowing an attacker to upload a crafted PHP file and achieve code execution. Root cause: unvalidated file...