AdminLog is a maintenance log tool to assist system administrators in keeping a log of their daily activities. The principle is simple in that you are not reliant on any particular text editor or access to network shares to keep a log that is intended to be available across many systems. Just pull up your AdminLog site from a web browser, type in the details of your log entry and hit submit. Change log for v0.6* Addressed security concerns brought to light in v0.5. Summary of vulnerabilities found:- An exploit was discovered that allowed users to bypass AdminLog's authentication mechanism. The exploit required that register_globals be enabled in the php.ini file. For full details on this vulnerability, please see http://secunia.com/advisories/35659/- Another vulnerability exists in v0.5 and earlier that did not verify the cookie contents that AdminLog would set, thereby allowing the log to be viewed/modified by unauthorized users.
