Demo Discussion
Forum Config Examples Contributions Vulnerabilities
  Known ELOG Vulnerabilities, Page 1 of 1  Not logged in ELOG logo
January 24, 2008, January 30, 2008, Cross-site scripting vulnerability, prior to 2.7.2, Low, Upgrade to version 2.7.2 
January 24, 2008, January 22, 2008, Three different vulnerabilities, prior to 2.7.1, Medium, Upgrade to version 2.7.1 
November 02, 2006, November 28, 2006, Six different vulnerabilities, prior to 2.6.3, Critical, Upgrade to version 2.6.3 
November 10, 2006, November 28, 2006, ELOG can be crashed with a specially crafted URL, prior to 2.6.3, Medium, Upgrade to version 2.6.3 
January 19, 2006, January 19, 2006, Special HTTP requests can disclose the contents of abritrary files on server, prior to 2.6.1, Critical, Upgrade to version 2.6.1 
December 20, 2005, February 14, 2005, Overly large parameters can cause execution of arbitrary code (buffer overflow), prior to 2.5.7, High, Upgrade to version 2.5.7 
ELOG V3.1.5-3fb85fa6