Elog Web Logbook@2.6.1 Security Vulnerabilities and Issues — Elog Web Logbook@2.6.1 CVE List

Lucene search

Stefan RittElog Web Logbook2.6.1

3 matches found

CVE•added 2006/09/28 12:7 a.m.•52 views

CVE-2006-5063

Cross-site scripting (XSS) vulnerability in Elog 2.6.1 allows remote attackers to inject arbitrary web script or HTML by editing log entries in HTML mode.

5.1CVSS5.5AI score0.01362EPSS

CVE•added 2006/12/28 8:28 p.m.•43 views

CVE-2006-6318

The show_elog_list function in elogd.c in elog 2.6.2 and earlier allows remote authenticated users to cause a denial of service (daemon crash) by attempting to access a logbook whose name begins with "global," which results in a NULL pointer dereference. NOTE: some of these details are obtained fro...

5CVSS6AI score0.02629EPSS

CVE•added 2009/09/11 4:30 p.m.•34 views

CVE-2008-7206

Unspecified vulnerability in Electronic Logbook (ELOG) before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting (XSS).

4.3CVSS6AI score0.00318EPSS