This script is Copyright (C) 2003-2016 Tenable Network Security, Inc.
The remote web server contains a PHP script that is affected by cross-
site scripting issues.
The version of paFileDB installed on the remote host is vulnerable to
cross-site scripting attacks due to its failure to sanitize input to
the 'id' parameter of the 'pafiledb.php' script before using it to
generate dynamic HTML. An attacker may use these flaws to steal
cookies of users of the affected application.
See also :
Upgrade to paFileDB 3.0 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true