Vulnerabilities > Emlog

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-02	CVE-2020-21585	Unrestricted Upload of File with Dangerous Type vulnerability in Emlog 6.0.0 Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module. network low complexity emlog CWE-434 critical	9.8
2021-02-08	CVE-2021-3293	Unspecified vulnerability in Emlog 5.3.1 emlog v5.3.1 has full path disclosure vulnerability in t/index.php, which allows an attacker to see the path to the webroot/file. network low complexity emlog	5.3
2019-10-01	CVE-2019-17073	Path Traversal vulnerability in Emlog emlog through 6.0.0beta allows remote authenticated users to delete arbitrary files via admin/template.php?action=del&tpl=../ directory traversal. network low complexity emlog CWE-22	6.5
2019-09-25	CVE-2019-16868	Path Traversal vulnerability in Emlog emlog through 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter. network low complexity emlog CWE-22 critical	9.8
2018-10-15	CVE-2018-18316	Cross-Site Request Forgery (CSRF) vulnerability in Emlog 6.0.0 emlog v6.0.0 has CSRF via the admin/user.php?action=new URI. network low complexity emlog CWE-352	8.8

Vulnerabilities > Emlog {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Emlog"}]}