This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote host is affected by a stored cross-site scripting
The remote host has a version of Advantech WebAccess prior to version
7.1-2013.05.29 (which is reported by installs using the
'7.1-2013.05.30' installer package from the vendor). It is, therefore,
affected by a stored cross-site scripting vulnerability in the
'ProjDesc' parameter of the '/broadWeb/include/gAddNew.asp' script.
See also :
Upgrade to Advantech WebAccess version 7.1-2013.05.29 (contained in
7.1-2013.05.30 installer package) or higher.
Risk factor :
Low / CVSS Base Score : 3.5
CVSS Temporal Score : 3.3
Public Exploit Available : true