How to Buy
This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.
The remote web server contains a PHP script affected by a cross-site
The remote host is running PHP Code Snippet Library (PHP-CSL), a
library written in PHP.
The remote version of this software fails to sanitize input to the
'cat_select' parameter of the 'index.php' script. This can be used to
take advantage of the trust between a client and server allowing the
See also :
Upgrade to PHP-CSL version 0.9.1 or later as that is rumored to
address the issue.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: CGI abuses : XSS
Nessus Plugin ID: 14368 ()
Bugtraq ID: 11038
CVE ID: CVE-2004-1746
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.