Vulnerabilities > Emlog > Emlog > 2.0.3

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-43291 Deserialization of Untrusted Data vulnerability in Emlog
Deserialization of Untrusted Data in emlog pro v.2.1.15 and earlier allows a remote attacker to execute arbitrary code via the cache.php component.
network
low complexity
emlog CWE-502
critical
 9.8
9.8
2023-04-27 CVE-2023-30338 Cross-site Scripting vulnerability in Emlog 2.0.3
Multiple stored cross-site scripting (XSS) vulnerabilities in Emlog Pro v2.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Article Title or Article Summary parameters.
network
low complexity
emlog CWE-79
5.4
5.4
2022-11-13 CVE-2022-3968 Cross-site Scripting vulnerability in Emlog
A vulnerability has been found in emlog and classified as problematic.
network
low complexity
emlog CWE-79
6.1
6.1