CVE-2019-14521
CVE-2019-14521 describes a path traversal vulnerability in the api/admin/logoupload Logo File upload feature of EMCA Energy Logserver 6.1.2, allowing an attacker to upload any file to arbitrary locations on the server via the filename parameter. The issue is caused by insufficient validation of t...