CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

RedhatCVE•added 2026/01/09 10:54 a.m.•6 views

CVE-2022-23379

Emlog v6.0 was discovered to contain a SQL injection vulnerability via the $TagID parameter of getblogidsfromtagid...

9.8CVSS8.3AI score0.00555EPSS

Exploits1References1

RedhatCVE•added 2026/01/03 6:59 p.m.•2 views

CVE-2026-21432

Emlog is an open source website building system. Version 2.5.23 has a stored cross-site scripting vulnerability that can lead to account takeover, including takeover of admin accounts. As of time of publication, no known patched versions are available...

8.2CVSS6.1AI score0.00022EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-10121

Malware in sbrugna...

6.1CVSS6.3AI score0.00686EPSS

Exploits1References2

NVD•added 2025/10/06 5:16 p.m.•4 views

CVE-2025-61769

Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including version 2.5.22 allows authenticated remote attackers to inject arbitrary web script or HTML via the file upload functionality. As an authenticated user it is possible to upload...

6.1CVSS0.00035EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-42867

Malicious code in bioql PyPI...

7.2CVSS7AI score0.0268EPSS

Exploits1References2

Positive Technologies•added 2025/07/16 12:0 a.m.•2 views

PT-2025-29838 · Emlog · Emlog

Name of the Vulnerable Software and Affected Versions: Emlog versions through 2.5.17 Description: Emlog is a website building system. A cross-site scripting XSS issue exists in versions up to and including 2.5.17, allowing remote attackers to inject arbitrary web script or HTML via the comment an...

6.1CVSS5AI score0.00168EPSS

Exploits1References7

RedhatCVE•added 2025/05/23 7:38 a.m.•3 views

CVE-2024-31013

Cross Site Scripting XSS vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footerinfo parameter...

6.1CVSS6.5AI score0.00561EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 4:10 a.m.•7 views

CVE-2023-39121

emlog v2.1.9 was discovered to contain a SQL injection vulnerability via the component /admin/user.php...

7.2CVSS8.2AI score0.0268EPSS

Exploits1

RedhatCVE•added 2025/05/23 4:3 a.m.•4 views

CVE-2023-37049

emlog 2.1.9 is vulnerable to Arbitrary file deletion via admin\template.php...

6.5CVSS6.8AI score0.00155EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:29 p.m.•5 views

CVE-2020-21013

emlog v6.0.0 contains a SQL injection via /admin/comment.php...

7.2CVSS7.9AI score0.00255EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:19 p.m.•5 views

CVE-2020-21654

emlog v6.0 contains a vulnerability in the component admin\template.php, which allows attackers to getshell via a crafted Zip file...

7.2CVSS6.7AI score0.00378EPSS

Exploits1

CNNVD•added 2024/04/14 12:0 a.m.•1 views

emlog 安全漏洞

emlog is a PHP and MySQL based CMS website builder by emlog's individual developers. A security vulnerability exists in emlog version 2.2.10. An attacker exploited the vulnerability to execute a cross-site scripting attack...

5.4CVSS4AI score0.00063EPSS

Exploits1References5

OSV•added 2024/04/03 4:15 a.m.•2 views

CVE-2024-31013

Cross Site Scripting XSS vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footerinfo parameter...

6.1CVSS6.6AI score

Exploits0References1

Vulnrichment•added 2024/04/03 12:0 a.m.•13 views

CVE-2024-31013

Cross Site Scripting XSS vulnerability in emlog version Pro 2.3, allow remote attackers to execute arbitrary code via a crafted payload to the bottom of the homepage in footerinfo parameter...

6.4AI score0.00561EPSS

Exploits1References1

OSV•added 2023/12/12 9:15 a.m.•18 views

CVE-2023-41623