CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-33752

An arbitrary file upload vulnerability exists in emlog pro 2.3.0 and pro 2.3.2 at admin/views/plugin.php that could be exploited by a remote attacker to submit a special request to upload a malicious file to execute arbitrary code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.837

EPSS Ranking 99.2%

CVSS Severity

CVSS v3 Score 6.3

References

https://github.com/Myanemo/emlogpro/blob/main/emlog%20pro2.3.2%20File%20upload%20to%20getshell.md
https://github.com/Myanemo/emlogpro/blob/main/emlog%20pro2.3.2%20File%20upload%20to%20getshell.md

Products affected by CVE-2024-33752

Emlog » Emlog » Version: 2.3.0

cpe:2.3:a:emlog:emlog:2.3.0
Emlog » Emlog » Version: 2.3.2

cpe:2.3:a:emlog:emlog:2.3.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-33752

Products

Pricing

Contact Us