VYPR
Unrated severityNVD Advisory· Published Dec 21, 2024· Updated Dec 27, 2024

Emlog Pro link.php cross site scripting

CVE-2024-12846

Description

A vulnerability, which was classified as problematic, has been found in Emlog Pro up to 2.4.1. Affected by this issue is some unknown functionality of the file /admin/link.php. The manipulation of the argument siteurl/icon leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Emlog Pro/Emlog Prodescription
  • Emlog/Emlogllm-fuzzy
    Range: <=2.4.1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.