phpGroupWare Wiki Module XSS

This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.

Synopsis :

A remote web application is vulnerable to cross-site scripting.

Description :

The remote host seems to be running PhpGroupWare, a multi-user
groupware suite written in PHP.

This issue exists due to a lack of sanitization of user-supplied data.
A malicious attacker can exploit a flaw to conduct cross-site
scripting attacks.

See also :

Solution :

Update to version or newer.

Risk factor :

Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 3.7
Public Exploit Available : true

Family: CGI abuses : XSS

Nessus Plugin ID: 14708 ()

Bugtraq ID: 11130

CVE ID: CVE-2004-0875

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now