Description

A security flaw has been discovered in loganhong php loganSite up to c035fb5c3edd0b2a5e32fd4051cbbc9e61a31426. This affects an unknown function of the file /includes/article_detail.php of the component Article Handler. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available.

Related CPE's

Could not find any relations

References

https://github.com/ssiled/cve/issues/1

https://vuldb.com/?ctiid.337720

https://vuldb.com/?id.337720

https://vuldb.com/?submit.720037

Weaknesses

[email protected]

Primary
CWE-74CWE-89

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

6.3 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Received

Published

2025-12-22T05:16:21.820

2 hours ago

Last modified

2025-12-22T05:16:21.820

2 hours ago