Thanks for your report, jdsn.
In other words this is a Cross-Site Scripting flaw which could be used to steal the session id of the logged in user viewing the logs.
I would recommend getting a CVE for it if this affects released products / software.
Thanks for your report, jdsn.
In other words this is a Cross-Site Scripting flaw which could be used to steal the session id of the logged in user viewing the logs.
I would recommend getting a CVE for it if this affects released products / software.