This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
A remote web application is vulnerable to cross-site scripting.
The remote host is running a version of PostNuke which contains the
'News' module which itself is vulnerable to a cross-site scripting issue.
An attacker may use these flaws to steal the cookies of the legitimate
users of this website.
Upgrade to the latest version of postnuke
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true
Family: CGI abuses : XSS
Nessus Plugin ID: 14727 ()
Bugtraq ID: 5809