First published: Fri Apr 02 2021(Updated: )
Vulnerability in emlog v6.0.0 allows user to upload webshells via zip plugin module.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Emlog Emlog | =6.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2020-21585.
The severity of CVE-2020-21585 is critical with a CVSS score of 9.8.
The vulnerability in emlog v6.0.0 allows users to upload webshells via the zip plugin module.
Emlog version 6.0.0 is affected by this vulnerability.
Yes, a fix for CVE-2020-21585 is available. It is recommended to update to the latest version of emlog.
You can find more information about this vulnerability on the GitHub issue links: [link1](https://github.com/emlog/emlog/issues/54) and [link2](https://github.com/pwnninja/emlog/issues/1).