Loganalyzer Cross Site Scripting Vulnerability in userchange.php

A cross-site scripting vulnerability in the viewid parameter of the userchange.php page was brought to our attention by Thomas Pollet. We thank then for giving us the chance to fix this issue before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. Continue reading "Loganalyzer Cross Site Scripting Vulnerability in userchange.php"

Loganalyzer Cross Site Scripting Vulnerability in oracle_query paramater

A cross-site scripting vulnerability in the oracle_query parameter of the asktheoracle.php page was brought to our attention by Mohd Izhar Bin Ali. We thank then for giving us the chance to fix this issue before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. Continue reading "Loganalyzer Cross Site Scripting Vulnerability in oracle_query paramater"

Loganalyzer Cross Site Scripting Vulnerability in Highlight Parameter

A cross-site scripting vulnerability in the highlight parameter of the index.php page was brought to our attention by Sooraj K.S SecPod Technologies. We thank then for giving us the chance to fix these issues before releasing information into the public. More details about the vulnerabilities can be found in this security advisory. Continue reading "Loganalyzer Cross Site Scripting Vulnerability in Highlight Parameter"