This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.
The remote host is affected by a stored cross-site scripting
The remote host has a version of Advantech WebAccess prior to version
7.1-2013.05.29 (which is reported by installs using the
'7.1-2013.05.30' installer package from the vendor). It is, therefore,
affected by a stored cross-site scripting vulnerability in the
'ProjDesc' parameter of the '/broadWeb/include/gAddNew.asp' script.
See also :
Upgrade to Advantech WebAccess version 7.1-2013.05.29 (contained in
7.1-2013.05.30 installer package) or higher.
Risk factor :
Low / CVSS Base Score : 3.5
CVSS Temporal Score : 3.3
Public Exploit Available : true
Nessus Plugin ID: 73642 ()
Bugtraq ID: 5717857227
CVE ID: CVE-2013-2299
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.