VYPR

ELOG

by Electronic Logbook

CVEs (3)

  • CVE-2008-7206Sep 11, 2009
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in Electronic Logbook (ELOG) before 2.7.2 has unknown impact and attack vectors when the "logbook contains HTML code," probably cross-site scripting (XSS).

  • CVE-2008-7004Aug 19, 2009
    risk 0.00cvss epss 0.02

    Buffer overflow in Electronic Logbook (ELOG) before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c.

  • CVE-2008-0445Jan 25, 2008
    risk 0.00cvss epss 0.01

    The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of service (infinite loop) via crafted logbook entries. NOTE: some of these details are obtained from third party information.