Vulnerability in Analog 3.0 and earlier allows remote attackers to read arbitrary files via the forms interface.
7.1AI Score
0.005EPSS
Buffer overflow in Analog before 4.16 allows remote attackers to execute arbitrary commands by using the ALIAS command to construct large strings.
7.9AI Score
0.009EPSS
Cross-site scripting vulnerability in analog before 5.22 allows remote attackers to execute Javascript via an HTTP request containing the script, which is entered into a web logfile and not properly filtered by analog during display.
6.6AI Score
0.019EPSS
anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log.
6.8AI Score
0.01EPSS