NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-41517

Summary	Emlog is an open source website building system. Prior to version 2.6.11, insecure plugin upload functionality allows attackers to upload and execute arbitrary PHP code, leading to complete server compromise and persistent backdoor installation. This issue has been patched in version 2.6.11.
Publication Date	May 9, 2026, 7:16 a.m.
Registration Date	May 10, 2026, 4:09 a.m.
Last Update	May 9, 2026, 7:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/emlog/emlog/security/advisories/GHSA-8qwx-6jx6-94x4	security-advisories@github.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-434	危険なタイプのファイルの無制限アップロード	https://cwe.mitre.org/data/definitions/434.html