First published: Tue Oct 03 2023(Updated: )
An arbitrary file upload vulnerability in the component /content/templates/ of Emlog Pro v2.2.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Emlog Emlog | =2.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2023-44973.
CVE-2023-44973 has a severity level of critical (9.8).
Emlog Pro v2.2.0 is affected by CVE-2023-44973.
Attackers can exploit CVE-2023-44973 by uploading a crafted PHP file through /content/templates/ component, which allows them to execute arbitrary code.
There is no information available about a fix for CVE-2023-44973. It is recommended to contact the software vendor for further guidance.