Vulnerabilities > Elog

DATE CVE VULNERABILITY TITLE RISK
2009-08-19 CVE-2008-7004 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Elog
Buffer overflow in Electronic Logbook (ELOG) before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c.
network
low complexity
elog CWE-119
critical
10.0
2008-01-25 CVE-2008-0445 Cross-Site Scripting Vulnerability and Denial of Service vulnerability in ELOG
The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of service (infinite loop) via crafted logbook entries.
network
low complexity
elog
5.0
2008-01-25 CVE-2008-0444 Cross-Site Scripting vulnerability in Elog
Cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via subtext parameter to unspecified components.
network
elog CWE-79
4.3
2005-12-21 CVE-2005-4439 Remote Buffer Overflow vulnerability in Elog Elogd 2.6.0Beta4
Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a URL with a long (1) cmd or (2) mode parameter.
network
low complexity
elog
7.8