Show filters
14 Total Results
Displaying 11-14 of 14
Sort by:
Attacker Value
Unknown

CVE-2020-21585

Disclosure Date: April 02, 2021 (last updated February 22, 2025)
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-17073

Disclosure Date: October 01, 2019 (last updated November 27, 2024)
emlog through 6.0.0beta allows remote authenticated users to delete arbitrary files via admin/template.php?action=del&tpl=../ directory traversal.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-16868

Disclosure Date: September 25, 2019 (last updated November 27, 2024)
emlog through 6.0.0beta has an arbitrary file deletion vulnerability via an admin/data.php?action=dell_all_bak request with directory traversal sequences in the bak[] parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2018-18316

Disclosure Date: October 15, 2018 (last updated November 27, 2024)
emlog v6.0.0 has CSRF via the admin/user.php?action=new URI.
0
0
View More Topics  < Previous