First published: Fri Oct 01 2021(Updated: )
emlog v6.0.0 contains a SQL injection via /admin/comment.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Emlog Emlog | =6.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of emlog v6.0.0 is CVE-2020-21013.
CVE-2020-21013 has a severity rating of 7.2 (high).
CVE-2020-21013 allows for SQL injection via /admin/comment.php in emlog v6.0.0.
Yes, a fix for CVE-2020-21013 is available. It is recommended to update to a version of emlog that is not affected by this vulnerability.
More information about CVE-2020-21013 can be found at the following link: https://github.com/emlog/emlog/issues/52