Gustavo Sorondo

**Name of the Vulnerable Software and Affected Versions** Adiscon LogAnalyzer versions prior to 4.1.7 **Description** The issue concerns a problem with the login functionality. Specifically, it involves the `Login Button Referer` field in the `login.php` file, which is vulnerable to XSS attacks. **Recommendations** For versions prior to 4.1.7, update to version 4.1.7 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Bacula-web versions prior to 8.0.0-rc2 Description: The issue allows an attacker to access the Bacula database through SQL Injection vulnerabilities. Depending on the configuration, this could potentially escalate privileges on the server. Recommendations: For versions prior to 8.0.0-rc2, update to version 8.0.0-rc2 or later to resolve the issue.