This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
A remote web application is vulnerable to cross-site scripting.
The remote host is running a version of PostNuke that contains
the 'Reviews' module, which itself is vulnerable to a cross-site
An attacker may use this flaw to steal the cookies of the legitimate
users of this website.
Upgrade to the latest version of this module.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: CGI abuses : XSS
Nessus Plugin ID: 14189 ()
Bugtraq ID: 10802