GhostBalladw/wuhaozhe-s-CVE

Releases0

CVE-2023-41623

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-41619 ↗	Jan 16, 2024Tuesday, 16 January 2024, 01:15	6.1 MEDIUM	—
Emlog Pro v2.1.14 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/article.php?action=write.
CVE-2023-41618 ↗	Dec 14, 2023Thursday, 14 December 2023, 00:15	6.1 MEDIUM	—
Emlog Pro v2.1.14 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the component /admin/article.php?active_savedraft.
CVE-2023-41621 ↗	Dec 13, 2023Wednesday, 13 December 2023, 23:15	6.1 MEDIUM	—
A Cross Site Scripting (XSS) vulnerability was discovered in Emlog Pro v2.1.14 via the component /admin/store.php.
CVE-2023-41623 ↗	Dec 12, 2023Tuesday, 12 December 2023, 09:15	7.2 HIGH	—
Emlog version pro2.1.14 was discovered to contain a SQL injection vulnerability via the uid parameter at /admin/media.php.