Vulnerabilities in emlog
30 resultsCVE-2025-47786LOWEmlog vulnerable to Stored Cross-site ScriptingEPSS 0.2%CVE-2026-21429LOWEmlog has Broken Access Control (BAC)EPSS 0.2%CVE-2025-61930HIGHEmlog Pro has CSRF issue that Enables Admin Password ResetEPSS 0.2%CVE-2026-34228HIGHEmlog: CSRF in Backend Upgrade Interface Leading to Arbitrary Remote SQL Execution and Arbitrary File WriteEPSS 0.2%CVE-2025-61599MEDIUMEmlog is Vulnerable to Stored Cross-Site Scripting (XSS) in "Twitter" Feature via Markdown InputEPSS 0.2%CVE-2026-42286HIGHEmlog: Cross-Site Request Forgery in Admin FunctionsEPSS 0.2%CVE-2026-21431LOWEmlog vulnerable to stored Cross-site Scripting via image nameEPSS 0.2%CVE-2026-21432MEDIUMEmlog has stored Cross-site Scripting issue that can lead to admin or another account ATOEPSS 0.2%CVE-2026-21430HIGHEmlog: CSRF chained with stored XSS leads to ATOEPSS 0.2%CVE-2026-31954NONEEmlog asynchronous media file deletion missing CSRF protectionEPSS 0.1%