What the vulnerability does

01Description

ELOG 3.1.4-57bea22 and below can be used as an HTTP GET request proxy when unauthenticated remote attackers send crafted HTTP POST requests.

Key dates

02Disclosure timeline

December 17, 2019 CVE published
August 4, 2024 Record updated

Related vulnerabilities

04Related CVE