Описание
A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects some unknown processing of the file /admin/article.php. The manipulation of the argument active_post leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitThird Party Advisory
- Permissions RequiredVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.5.7 (включая)
cpe:2.3:a:emlog:emlog:*:*:*:*:pro:*:*:*
EPSS
Процентиль: 12%
0.0004
Низкий
3.5 Low
CVSS3
4.1 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 3.5
github
8 месяцев назад
A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects some unknown processing of the file /admin/article.php. The manipulation of the argument active_post leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 12%
0.0004
Низкий
3.5 Low
CVSS3
4.1 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-79
CWE-79