Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17 allows remote atta

WEBSITE

16-07-2025 19:08

CVE-2025-53926 Vulnerabilidad documentada

Sin puntuación

Tags

#xss

#site

#cross

#web

#source

#open

#cross-site

#website

#vulnerability

#cross-site scripting

#attackers

#arbitrary

#scripting

#remote

#patched

#patch

#inject

#allow

#attack

Descripción

Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in emlog up to and including pro-2.5.17 allows remote attackers inject arbitrary web script or HTML via the comment comname parameters. Reflected XSS requires victim send POST requests, therefore must be persuaded into clicking sent URL. As of time publication, no known patched versions exist.

https://github.com/emlog/emlog/security/advisories/GHSA-g8jx-pj5p-fm3x

Referencia

Link externo

Ver detalles

Fuente

https://nvd.nist.gov/vuln/detail/CVE-2025-53926

Resultados similares

Coincidentes en almenos en 50% de los tags

16-07-2025 CVE-2025-53904
The Scratch Channel is a news website that is under development as of time of this writing. The...
Ver información

16-07-2025 CVE-2025-53924
Emlog is an open source website building system. A cross-site scripting (XSS) vulnerability in ...
Ver información