This script is Copyright (C) 2013 Tenable Network Security, Inc.
The remote web server is prone to multiple persistent cross-site
scripting (XSS) attacks.
The remote host contains ManageEngine AssetExplorer version 5.6.0 prior
to build 5614. It is, therefore, potentially affected by multiple,
persistent cross-site scripting (XSS) vulnerabilities via XML asset data
An unauthenticated, remote attacker could create a specially crafted
request that would execute arbitrary code in the user's browser.
See also :
Update to version 5.6.0 build 5614 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.6
Public Exploit Available : true