Known Vulnerabilities for products from Emlog
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Emlog".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-42287 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-42286 json | Not Provided | 2026-05-08 | 2026-05-12 | |
| CVE-2026-41517 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-39276 json | The template upload feature in Emlog Pro v2.6.9 has a path traversal vulnerability, allowing authenticated administrators to ... | Not Provided | 2026-05-29 | 2026-06-11 |
| CVE-2026-34788 json | Emlog is an open source website building system. In versions 2.6.2 and prior, a SQL injection vulnerability exists in include... | Not Provided | 2026-04-03 | 2026-04-13 |
| CVE-2026-34787 json | Emlog is an open source website building system. In versions 2.6.2 and prior, a Local File Inclusion (LFI) vulnerability exis... | Not Provided | 2026-04-03 | 2026-04-13 |
| CVE-2026-34607 json | Emlog is an open source website building system. In versions 2.6.2 and prior, a path traversal vulnerability exists in the em... | Not Provided | 2026-04-03 | 2026-04-13 |
| CVE-2026-34229 json | Emlog is an open source website building system. Prior to version 2.6.8, there is a stored cross-site scripting (XSS) vulnera... | Not Provided | 2026-04-03 | 2026-04-13 |
| CVE-2026-34228 json | Not Provided | 2026-04-03 | 2026-04-06 | |
| CVE-2026-21429 json | Emlog is an open source website building system. In version 2.5.23, the admin can set controls which makes users unable to ed... | Not Provided | 2026-01-02 | 2026-04-29 |
| CVE-2025-9296 json | A security vulnerability has been detected in Emlog Pro up to 2.5.18. This affects an unknown function of the file /admin/blo... | Not Provided | 2025-08-21 | 2026-04-29 |
| CVE-2025-5886 json | A vulnerability was found in Emlog up to 2.5.7 and classified as problematic. This issue affects some unknown processing of t... | Not Provided | 2025-06-09 | 2026-04-29 |
| CVE-2023-44974 json | An arbitrary file upload vulnerability in the component /admin/plugin.php of Emlog Pro v2.2.0 allows attackers to execute arb... | 9.8 - CRITICAL | 2023-10-03 | 2023-10-05 |
| CVE-2023-44973 json | An arbitrary file upload vulnerability in the component /content/templates/ of Emlog Pro v2.2.0 allows attackers to execute a... | 9.8 - CRITICAL | 2023-10-03 | 2023-10-05 |
| CVE-2023-43291 json | Deserialization of Untrusted Data in emlog pro v.2.1.15 and earlier allows a remote attacker to execute arbitrary code via th... | 9.8 - CRITICAL | 2023-09-27 | 2023-09-29 |
| CVE-2023-43267 json | A cross-site scripting (XSS) vulnerability in the publish article function of emlog pro v2.1.14 allows attackers to execute a... | 5.4 - MEDIUM | 2023-10-02 | 2023-10-04 |
| CVE-2023-39121 json | emlog v2.1.9 was discovered to contain a SQL injection vulnerability via the component /admin/user.php. | 7.2 - HIGH | 2023-08-03 | 2023-08-08 |
| CVE-2023-37049 json | emlog 2.1.9 is vulnerable to Arbitrary file deletion via admin\template.php. | 6.5 - MEDIUM | 2023-07-26 | 2023-07-31 |
| CVE-2023-30338 json | Multiple stored cross-site scripting (XSS) vulnerabilities in Emlog Pro v2.0.3 allows attackers to execute arbitrary web scri... | 5.4 - MEDIUM | 2023-04-27 | 2023-05-03 |
| CVE-2022-43372 json | Emlog Pro v1.7.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability at /admin/store.php. | 4.8 - MEDIUM | 2022-11-03 | 2022-11-04 |
Known software with vulnerabilities from Emlog
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Emlog | Emlog | - |