yangliukk

2 exploits Active since Oct 2023
CVE-2023-44973 WRITEUP CRITICAL WRITEUP
Emlog Pro 2.2.0 - Arbitrary File Upload and Remote Code Execution via Template Upload
An arbitrary file upload vulnerability in the component /content/templates/ of Emlog Pro v2.2.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVSS 9.8
CVE-2023-44974 WRITEUP CRITICAL WRITEUP
Emlog Pro 2.2.0 - Unauthenticated Arbitrary File Upload via Plugin Upload Endpoint
An arbitrary file upload vulnerability in the component /admin/plugin.php of Emlog Pro v2.2.0 allows attackers to execute arbitrary code via uploading a crafted PHP file.
CVSS 9.8