CNNVD-202512-2818 Information

CNNVD ID

CNNVD-202512-2818

Related CVE

CVE-2023-53895

• CNNVD Published: 2025-12-16

Description (Chinese)

PimpMyLog是法国Potsky开源的一个日志文件查看器和分析工具。 PimpMyLog 1.7.14版本存在安全漏洞，该漏洞源于访问控制不当，可能导致远程攻击者创建管理员账户并注入恶意JavaScript。

Description (English)

PimpMyLog is a log file viewer and analytical tool for the open source Potsky, France. Version 1.7.14 of PimpMyLog has a security loophole, which stems from inadequate access controls, which may result in remote assailants creating administrator accounts and injecting malicious JavaScript.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Potsky

Published

2025-12-16

Last Modified

2026-02-24

References

https://github.com/potsky/PimpMyLog https://www.exploit-db.com/exploits/51593 https://www.pimpmylog.com/ https://www.vulncheck.com/advisories/pimpmylog-improper-access-control-via-account-creation-endpoint