This script is Copyright (C) 2003-2015 George A. Theall
The remote web server is affected by a cross-site scripting
The remote server is running at least one instance of IMP whose
version number is between 3.0 and 3.2.1 inclusive. Such versions are
vulnerable to several cross-scripting attacks whereby an attacker can
reading an HTML message from the attacker.
Note : Nessus has determined the vulnerability exists on the target
simply by looking at the version number of IMP installed there. If the
installation has already been patched, consider this a false positive.
See also :
Upgrade to IMP version 3.2.2 or later or apply patches found
in the announcements to imp/lib/MIME/Viewer/html.php.
Risk factor :
Medium / CVSS Base Score : 4.3
Family: CGI abuses : XSS
Nessus Plugin ID: 11815 (imp_mime_viewer_html_xss.nasl)
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.