Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17 allows authenticat

WEBSITE

16-07-2025 19:08

CVE-2025-53924 Vulnerabilidad documentada

6.9 MEDIUM

Tags

#xss

#site

#cross

#web

#source

#open

#cross-site

#website

#vulnerability

#cross-site scripting

#attackers

#authenticated

#arbitrary

#scripting

#remote

#patched

#patch

#malicious

#inject

#execute

#allow

#attack

Descripción

Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers inject arbitrary web script or HTML via the siteurl parameter. It possible malicious code into parameter resulting Stored XSS. When someone clicks on link executed. As of time publication, no known patched versions exist.

https://github.com/emlog/emlog/security/advisories/GHSA-6rmq-5rjf-3fmx

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-53924

Resultados similares

Coincidentes en almenos en 50% de los tags

16-07-2025 CVE-2025-53904
The Scratch Channel is a news website that is under development as of time of this writing. The...
Ver información

16-07-2025 CVE-2025-53926
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in ...
Ver información