Primary

Context

Emlog Pro File Upload Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A file upload vulnerability has been identified in Emlog Pro versions prior to 2.5.10. The issue resides in the store.php component, which improperly validates the contents of remotely downloaded ZIP plugin files. This lack of adequate validation enables attackers to execute arbitrary code on the affected system.

Impact

Exploitation of this vulnerability could lead to a full server takeover.

Reproduction

To reproduce this vulnerability, first deploy a malicious script on a remote server, creating a folder with the same name, and compress it into a ZIP file. After enabling the HTTP service, initiate a remote download request through the vulnerable Emlog Pro installation, using the admin/store.php endpoint. Once the ZIP file is downloaded and extracted, the malicious script will be executed on the server.

Remediation

Users can upgrade to Emlog Pro version 2.5.10 or later, where this vulnerability has been patched.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.3

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.4

impact

10.0

exploitability

6.3

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Emlog Pro File Upload Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Emlog Pro

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating