VYPR

Zrlog Plugin Backup SQL File

by ZrLog

Source repositories

CVEs (3)

  • CVE-2018-17420HigMar 7, 2019
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter.

  • CVE-2024-57669HigFeb 3, 2025
    risk 0.42cvss 7.5epss 0.01

    Directory Traversal vulnerability in Zrlog backup-sql-file.jar v.3.0.31 allows a remote attacker to obtain sensitive information via the BackupController.java file.

  • CVE-2018-17421MedMar 7, 2019
    risk 0.40cvss 6.1epss 0.01

    An issue was discovered in ZrLog 2.0.3. There is stored XSS in the file upload area via a crafted attached/file/ pathname.