Cross-site scripting (XSS) vulnerability in index.php in Adiscon LogAnalyzer before 3.4.4 and 3.5.x before 3.5.5 allows remote attackers to inject arbitrary web script or HTML via the highlight parameter in a Search action.
5.8AI Score
0.003EPSS
Multiple cross-site scripting (XSS) vulnerabilities in Adiscon LogAnalyzer before 3.6.6 allow remote attackers to inject arbitrary web script or HTML via the hostname in (1) index.php or (2) detail.php.
5.7AI Score
0.003EPSS
login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field.
6.1CVSS
5.8AI Score
0.002EPSS
6.1CVSS
6.3AI Score
0.001EPSS
9.8CVSS
9.5AI Score
0.001EPSS
A Cross Site Scripting (XSS) vulnerability in Adiscon Aiscon LogAnalyzer through 4.1.13 allows a remote attacker to execute arbitrary code via the asktheoracle.php, details.php, index.php, search.php, export.php, reports.php, and statistics.php components.
6.1CVSS
6AI Score
0.009EPSS