Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Known ELOG Vulnerabilities  Not logged in ELOG logo
 Back  |  Find  |  Login  |  Help 
Message ID: 6     Entry time: Wed Jan 30 12:44:07 2008
Date reported:January 24, 2008 
Date fixed:January 30, 2008 
Problem: Cross-site scripting vulnerability 
Versions: prior to 2.7.2 
Risk: Low 
Solution: Upgrade to version 2.7.2 

Requests using hand-crafted URLs can execute arbitrary script code.

ELOG V3.1.5-fe60aaf