Vulnerabilities > Emlog > Emlog > 2.1.9

DATE CVE VULNERABILITY TITLE RISK
2023-08-03 CVE-2023-39121 SQL Injection vulnerability in Emlog 2.1.9
emlog v2.1.9 was discovered to contain a SQL injection vulnerability via the component /admin/user.php.
network
low complexity
emlog CWE-89
7.2
7.2
2023-07-26 CVE-2023-37049 Missing Authorization vulnerability in Emlog 2.1.9
emlog 2.1.9 is vulnerable to Arbitrary file deletion via admin\template.php.
network
low complexity
emlog CWE-862
6.5
6.5
2022-11-13 CVE-2022-3968 Cross-site Scripting vulnerability in Emlog
A vulnerability has been found in emlog and classified as problematic.
network
low complexity
emlog CWE-79
6.1
6.1