CNNVD-202507-2233 Information

CNNVD ID

CNNVD-202507-2233

Related CVE

CVE-2025-53923

• CNNVD Published: 2025-07-16

Description (Chinese)

emlog是emlog开源的一套基于PHP和MySQL的CMS建站系统。 emlog pro-2.5.17及之前版本存在安全漏洞，该漏洞源于keyword参数清理不足，可能导致远程攻击者注入任意Web脚本。

Description (English)

Emlog is a CMS station system based on PHP and MySQL. There is a security loophole in the mlog pro-2.5.17 and earlier versions, which stems from the inadequate clearance of the Keyword parameters, which could lead to the injection of any kind of Web script into the remote attackers.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Emlog

Published

2025-07-16

Last Modified

2026-02-24

References

https://github.com/emlog/emlog/security/advisories/GHSA-vvx2-m94x-f54m