Ez4S1Mple1943

**Name of the Vulnerable Software and Affected Versions** Emlog Pro version 2.0.3 **Description** The issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the `Article Title` or `Article Summary` parameters. This enables the execution of malicious scripts, potentially leading to security breaches. **Recommendations** For Emlog Pro version 2.0.3, consider disabling the ability to inject custom payloads into the `Article Title` and `Article Summary` parameters until a patch is available. Restrict access to these parameters to minimize the risk of exploitation. Avoid using these parameters in a way that could allow malicious input until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.