Demo
Discussion
Forum
Config Examples
Contributions
Vulnerabilities
Known ELOG Vulnerabilities, Page 1 of 1
Not logged in
Find
|
Login
|
Help
Full
| Summary |
Threaded
6 Entries
Date reported
Date fixed
Problem
Versions
Risk
Solution
January 24, 2008
January 30, 2008
Cross-site scripting vulnerability
prior to 2.7.2
Low
Upgrade to version 2.7.2
January 24, 2008
January 22, 2008
Three different vulnerabilities
prior to 2.7.1
Medium
Upgrade to version 2.7.1
November 10, 2006
November 28, 2006
ELOG can be crashed with a specially crafted URL
prior to 2.6.3
Medium
Upgrade to version 2.6.3
November 02, 2006
November 28, 2006
Six different vulnerabilities
prior to 2.6.3
Critical
Upgrade to version 2.6.3
January 19, 2006
January 19, 2006
Special HTTP requests can disclose the contents of abritrary files on server
prior to 2.6.1
Critical
Upgrade to version 2.6.1
December 20, 2005
February 14, 2005
Overly large parameters can cause execution of arbitrary code (buffer overflow)
prior to 2.5.7
High
Upgrade to version 2.5.7
ELOG V3.1.5-3fb85fa6