Vulnerabilities > Adiscon > Loganalyzer > 3.6.6

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-36306 Cross-site Scripting vulnerability in Adiscon Loganalyzer
A Cross Site Scripting (XSS) vulnerability in Adiscon Aiscon LogAnalyzer through 4.1.13 allows a remote attacker to execute arbitrary code via the asktheoracle.php, details.php, index.php, search.php, export.php, reports.php, and statistics.php components.
network
low complexity
adiscon CWE-79
6.1
6.1
2023-06-20 CVE-2023-34600 SQL Injection vulnerability in Adiscon Loganalyzer
Adiscon LogAnalyzer v4.1.13 and before is vulnerable to SQL Injection.
network
low complexity
adiscon CWE-89
critical
 9.8
9.8
2018-12-05 CVE-2018-19877 Cross-site Scripting vulnerability in Adiscon Loganalyzer
login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field.
network
adiscon CWE-79
4.3
4.3