VYPR

Electronic Logbook

by Electronic Logbook

CVEs (3)

  • CVE-2008-7206Sep 11, 2009
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in Electronic Logbook (ELOG) before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting (XSS).

  • CVE-2008-7004Aug 19, 2009
    risk 0.00cvss epss 0.02

    Buffer overflow in Electronic Logbook (ELOG) before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c.

  • CVE-2008-0444Jan 25, 2008
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Electronic Logbook (ELOG) before 2.7.0 allows remote attackers to inject arbitrary web script or HTML via subtext parameter to unspecified components.