CVE-2024-12846

CVSS V2 None CVSS V3 None
Description
A vulnerability, which was classified as problematic, has been found in Emlog Pro up to 2.4.1. Affected by this issue is some unknown functionality of the file /admin/link.php. The manipulation of the argument siteurl/icon leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Overview
  • CVE ID
  • CVE-2024-12846
  • Assigner
  • VulDB
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-12-21T05:00:11.038Z
  • Last Modified Date
  • 2024-12-21T05:00:11.038Z
References
Reference URL Reference Tags
https://vuldb.com/?id.289082 vdb-entry technical-description
https://vuldb.com/?ctiid.289082 signature permissions-required
https://vuldb.com/?submit.462614 third-party-advisory
https://github.com/emlog/emlog/issues/307 exploit issue-tracking
History
Created Old Value New Value Data Type Notes
2024-12-21 13:19:08 Added to TrackCVE