An arbitrary file upload vulnerability in the component /admin/template.php of emlog pro 2.5.0 and pro 2.5.* allows attackers to execute arbitrary code via uploading a crafted PHP file.
{ "versions": [ { "introduced": "2.5.1" }, { "last_affected": "2.5.7" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-29405.json"