Loganalyzer Cross Site Scripting Vulnerability in userchange.php

Wednesday, January 9th, 2013

A cross-site scripting vulnerability in the viewid parameter of the userchange.php page was brought to our attention by Thomas Pollet. We thank then for giving us the chance to fix this issue before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. (more…)


Loganalyzer Cross Site Scripting Vulnerability in oracle_query paramater

Thursday, December 20th, 2012

A cross-site scripting vulnerability in the oracle_query parameter of the¬†asktheoracle.php page was brought to our attention by Mohd Izhar Bin Ali. We thank then for giving us the chance to fix this issue before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. (more…)


Loganalyzer Cross Site Scripting Vulnerability in Highlight Parameter

Wednesday, June 20th, 2012

A cross-site scripting vulnerability in the highlight parameter of the index.php page was brought to our attention by Sooraj K.S SecPod Technologies. We thank then for giving us the chance to fix these issues before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. (more…)


LogAnalyzer vulnerabilities

Wednesday, May 23rd, 2012

Several vulnerabilities were discovered and brought to our attention by Filippo Cavallarin. We thank him for giving us the chance to fix these issues before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. (more…)