Skip to main content

Energy Logserver

1 CVEs product

Monthly

CVE-2019-14521 HIGH POC PATCH This Week

The api/admin/logoupload Logo File upload feature in EMCA Energy Logserver 6.1.2 allows attackers to send any kind of file to any location on the server via path traversal in the filename parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

File Upload Path Traversal Energy Logserver
NVD GitHub
CVSS 3.0
7.5
EPSS
2.4%
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

The api/admin/logoupload Logo File upload feature in EMCA Energy Logserver 6.1.2 allows attackers to send any kind of file to any location on the server via path traversal in the filename parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

File Upload Path Traversal Energy Logserver
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy