Vulnerabilities > Emlog > Emlog > 5.3.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-11-13 | CVE-2022-3968 | Cross-site Scripting vulnerability in Emlog A vulnerability has been found in emlog and classified as problematic. | 6.1 |
2021-12-14 | CVE-2021-40883 | Unrestricted Upload of File with Dangerous Type vulnerability in Emlog 5.3.1 A Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins. | 7.5 |
2021-05-06 | CVE-2021-31737 | Unrestricted Upload of File with Dangerous Type vulnerability in Emlog 5.3.1/6.0.0 emlog v5.3.1 and emlog v6.0.0 have a Remote Code Execution vulnerability due to upload of database backup file in admin/data.php. | 7.5 |
2021-02-08 | CVE-2021-3293 | Unspecified vulnerability in Emlog 5.3.1 emlog v5.3.1 has full path disclosure vulnerability in t/index.php, which allows an attacker to see the path to the webroot/file. | 5.3 |
2019-10-01 | CVE-2019-17073 | Path Traversal vulnerability in Emlog 3.5.1/5.3.1/6.0.0 emlog through 6.0.0beta allows remote authenticated users to delete arbitrary files via admin/template.php?action=del&tpl=../ directory traversal. | 5.5 |
2019-09-25 | CVE-2019-16868 | Path Traversal vulnerability in Emlog 3.5.1/5.3.1/6.0.0 emlog through 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter. | 7.5 |