CVE-2026-46687 | emlog up to 2.6.13 Article Publishing Interface api_controller.php getView template php file inclusion (EUVD-2026-44986)

SecurityVulns

A vulnerability was found in emlog up to 2.6.13. It has been declared as problematic. Affected by this vulnerability is the function getView of the file api_controller.php of the component Article Publishing Interface. Executing a manipulation of the argument template can lead to improper control of filename for include/require statement in php program.

This vulnerability appears as CVE-2026-46687. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More