Kripa Thapa

**Name of the Vulnerable Software and Affected Versions** Logpoint versions prior to 7.6.0 **Description** An issue exists in Logpoint that allows attackers to create custom Jinja templates when creating reports. By chaining built-in filter functions within these templates, attackers can generate cross-site scripting (XSS) payloads. These payloads can be rendered by the Logpoint Report Template engine, leading to XSS attacks. **Recommendations** Update Logpoint to version 7.6.0 or later.

**Name of the Vulnerable Software and Affected Versions** Logpoint versions prior to 7.6.0 **Description** An issue exists in Logpoint that allows an attacker with operator privileges to exploit a path traversal vulnerability when creating a Layout Template. Successful exploitation can lead to remote code execution (RCE). **Recommendations** Update Logpoint to version 7.6.0 or later.