2 matches found
emlog 代码注入漏洞
emlog is emlog personal developer of a PHP and MySQL based CMS site building system. Code injection vulnerability exists in emlog Pro 2.4.1 and earlier versions, which originates from cross-site scripting attacks due to manipulation of the siteurl/icon parameter in the /admin/link.php file...
PT-2024-17765 · Emlog Pro · Emlog Pro
Name of the Vulnerable Software and Affected Versions: Emlog Pro versions up to 2.4.1 Description: A problematic issue has been found in Emlog Pro, affecting some unknown functionality of the file /admin/link.php. The manipulation of the siteurl/icon argument leads to cross site scripting. The...