This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
FrSIRT advisory ADV-2006-2356 reports :
Multiple vulnerabilities have been identified in Horde Application
Framework, which may be exploited by attackers to execute arbitrary
scripting code. These flaws are due to input validation errors in the
'test.php' and 'templates/problem/problem.inc' scripts that do not
validate the 'url', 'name', 'email', 'subject' and 'message'
parameters, which could be exploited by attackers to cause arbitrary
scripting code to be executed by the user's browser in the security
context of an affected Website.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 6.8