This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.
The remote web server is running a PHP application that is affected by
a cross-site scripting vulnerability.
The remote host is running at least one instance of Horde IMP in which
the 'status.php3' script is vulnerable to a cross-site scripting attack
since information passed to it is not properly sanitized.
See also :
Upgrade to IMP version 2.2.8 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.2
Public Exploit Available : false