CVE-2021-3293
MEDIUM NUCLEIemlog v5.3.1 - Full Path Disclosure in t/index.php
Title source: llmExploitation Summary
CVE-2021-3293 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
emlog v5.3.1 has full path disclosure vulnerability in t/index.php, which allows an attacker to see the path to the webroot/file.
Nuclei Templates (1)
emlog 5.3.1 Path Disclosure
MEDIUMby h1ei1
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/emlog/emlog/issues/62
Exploit, Third Party Advisory x_refsource_misc
https://github.com/thinkgad/Bugs/blob/main/emlog%20v5.3.1%20has%20Full%20Path%20Disclosure%20vulnerability.md
Scores
CVSS v3
5.3
EPSS
0.1744
EPSS Percentile
96.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
Status
published
Products (1)
emlog/emlog
5.3.1
Published
Feb 08, 2021
Tracked Since
Feb 18, 2026