High severity7.5NVD Advisory· Published Aug 5, 2019· Updated Jun 17, 2026
CVE-2019-14521
CVE-2019-14521
Description
The api/admin/logoupload Logo File upload feature in EMCA Energy Logserver 6.1.2 allows attackers to send any kind of file to any location on the server via path traversal in the filename parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- EMCA/Energy Logserverdescription
- Range: = 6.1.2
Patches
Vulnerability mechanics
References
4- github.com/emca-it/Energy-Log-Server-6.x/commits/masternvdPatchThird Party Advisory
- gist.github.com/ahpaleus/effb46d4a9d9c2b9a452c98f64ddc2c7nvdExploitThird Party Advisory
- energy-log-server-6x.readthedocs.io/en/latest/CHANGELOG.htmlnvdRelease NotesThird Party Advisory
- energylogserver.pl/en/nvdVendor Advisory
News mentions
0No linked articles in our index yet.