CVE-2022-3968

LOW 3.5

emlog article_save.php cross site scripting

CVSS Score

3.5

EPSS Score

0.0%

EPSS Percentile

0th

A vulnerability has been found in emlog and classified as problematic. Affected by this vulnerability is an unknown functionality of the file admin/article_save.php. The manipulation of the argument tag leads to cross site scripting. The attack can be launched remotely. The name of the patch is 5bf7a79826e0ea09bcc8a21f69a0c74107761a02. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213547.

CWE	CWE-707
Vendor	unspecified
Product	emlog
Published	Nov 13, 2022
Last Updated	Nov 19, 2024

Stay Ahead of the Next One

Get instant alerts for unspecified emlog

Be the first to know when new low vulnerabilities affecting unspecified emlog are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

None

Affected Versions

unspecified / emlog

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/emlog/emlog/commit/5bf7a79826e0ea09bcc8a21f69a0c74107761a02 vuldb.com: https://vuldb.com/?id.213547