How to Buy
This script is Copyright (C) 2009-2017 Tenable Network Security, Inc.
A CGI application hosted on the remote web server is potentially
prone to cross-site scripting attack.
The remote web server hosts one or more CGI scripts that fail to
By leveraging this issue, an attacker may be able to cause arbitrary
HTML and script code to be executed in a user's browser within the
security context of the affected site.
These issues are likely to be 'persistent' or 'stored', but this
aspect should be checked manually. Please note that persistent
cross-site scripting can be triggered by any channel that provides
information to the application. Nessus cannot test them all.
See also :
Restrict access to the vulnerable application or contact the vendor
for a patch or upgrade.
Risk factor :
Medium / CVSS Base Score : 4.3
Family: CGI abuses : XSS
Nessus Plugin ID: 42425 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.