Thanks Brian, I think it is cross site scripting attempts but nothing
malicious - could either have been myself or our penetation testers.
The default xslt had a cross site scripting vulnerability and that
date coincides with some testing we were doing last year. I can't
generate any other logs for any time after that date and since the
mini only keeps logs for 1 year I can't try before.
Is there any way I can manually get to the logs in a text editor to
try and delete/edit that entry to see if it fixes the issue?
Julian