Описание
Emlog is an open source website building system. Version 2.5.23 has a stored cross-site scripting vulnerability that can lead to account takeover, including takeover of admin accounts. As of time of publication, no known patched versions are available.
Ссылки
- ExploitVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:emlog:emlog:2.5.23:*:*:*:pro:*:*:*
EPSS
Процентиль: 10%
0.00035
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
EPSS
Процентиль: 10%
0.00035
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79