21 matches found
EUVD-2020-13792
Malware in sbrugna...
CVE-2020-21014
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php...
CVE-2020-21013
emlog v6.0.0 contains a SQL injection via /admin/comment.php...
CVE-2020-21013
emlog v6.0.0 contains a SQL injection via /admin/comment.php...
CVE-2020-21014
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php...
Sql injection
emlog v6.0.0 contains a SQL injection via /admin/comment.php...
Arbitrary file deletion
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php...
CVE-2020-21014
emlog v6.0.0 contains an arbitrary file deletion vulnerability in admin/plugin.php...
CVE-2020-21013
emlog v6.0.0 contains a SQL injection via /admin/comment.php...
CVE-2020-18194
Cross Site Scripting XSS in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post...
Cross site scripting
Cross Site Scripting XSS in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post...
CVE-2020-18194
CVE-2020-18194 concerns a cross-site scripting (XSS) vulnerability in emlog v6.0.0. The issue allows remote attackers to execute arbitrary code by inserting a crafted script as a link to a new blog post. Documents consistently describe XSS as the vulnerability, with the exploit described as requi...
Remote code execution
emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php...
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module...
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module...
Design/Logic Flaw
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module...
CVE-2020-21585
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module...
CVE-2018-18316
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI...
CVE-2018-18316
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI...
Cross site request forgery (csrf)
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI...