Unauthenticated Remote Attackers Exploit ELOG 3.1.4-57bea22 and Below as HTTP GET Request Proxy

Unauthenticated Remote Attackers Exploit ELOG 3.1.4-57bea22 and Below as HTTP GET Request Proxy

CVE-2019-3996 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

ELOG 3.1.4-57bea22 and below can be used as an HTTP GET request proxy when unauthenticated remote attackers send crafted HTTP POST requests.

Learn more about our Web Application Penetration Testing UK.