漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
A stored Cross-Site Scripting (XSS) vulnerability has been discovered in Emlog Pro 2.5.19. The vulnerability exists due to insufficient validation of SVG file uploads in the /admin/media.php component, allowing attackers to upload malicious SVG files containing JavaScript code that executes when the uploaded file is viewed.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Emlog Pro 安全漏洞
Vulnerability Description
Emlog Pro是Emlog开源的一个博客系统。 Emlog Pro 2.5.19版本存在安全漏洞,该漏洞源于对SVG文件上传验证不足,可能导致存储型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A