This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.
A network traffic monitoring application on the remote host has a
cross-site scripting vulnerability.
The version of PRTG Traffic Grapher hosted on the remote web server
is affected by a cross-site scripting vulnerability in the 'url'
parameter of the 'login.htm' script.
An unauthenticated, remote attacker may be able to exploit this flaw to
inject arbitrary HTML and script code in a user's browser.
See also :
Upgrade to PRTG Traffic Grapher 184.108.40.2063 / 220.127.116.114 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true
Family: CGI abuses : XSS
Nessus Plugin ID: 46857 ()
Bugtraq ID: 40630