CNNVD-202508-050 Information

CNNVD ID

CNNVD-202508-050

Related CVE

CVE-2025-44139

• CNNVD Published: 2025-08-01

Description (Chinese)

Emlog Pro是Emlog开源的一个博客系统。 Emlog Pro 2.5.7版本存在安全漏洞，该漏洞源于文件/emlog/admin/plugin.php?action=upload_zip允许上传危险类型文件。

Description (English)

Emlog Pro is a blog system open to Emlog. Emlog Pro 2.5.7 has a security loophole, which stems from the fact that the file/emlog/admin/plugin.php?action=upload zip allows the uploading of hazardous type files.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Emlog

Published

2025-08-01

Last Modified

2026-02-24

References

http://emlog.com https://gist.github.com/babapihai/b56121e0b2694e2be22571057d05298e https://access.redhat.com/security/cve/cve-2025-44139

Patch

https://www.emlog.net/download