This script is Copyright (C) 2010-2011 Tenable Network Security, Inc.
A web server running on the remote host has a cross-site scripting
According to its self-reported version number, the Nessus web server
running on the remote host has a cross-site scripting vulnerability.
A remote attacker could exploit this by tricking a user into making a
maliciously crafted request, resulting in the execution of arbitrary
See also :
Upgrade the plugin feed using 'nessus-update-plugins', restart the web
server, and verify web server version 1.2.4 or later is running. The
web server version can be viewed by logging in and clicking the
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true