Emlog Pro 1.6.0 plugins upload suffers from a remote code execution (RCE) vulnerability.
References
Link | Resource |
---|---|
https://github.com/wszdhf/cms_vul/blob/main/emlog_pro_1.6.0_rce.md | Exploit Third Party Advisory |
Configurations
History
22 Oct 2022, 02:44
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/wszdhf/cms_vul/blob/main/emlog_pro_1.6.0_rce.md - Exploit, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
CPE | cpe:2.3:a:emlog:emlog:1.6.0:*:*:*:pro:*:*:* | |
First Time |
Emlog emlog
Emlog |
|
CWE | CWE-434 |
21 Oct 2022, 12:32
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-21 12:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-42189
Mitre link : CVE-2022-42189
CVE.ORG link : CVE-2022-42189
JSON object : View
Products Affected
emlog
- emlog
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type