This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.
A CGI application hosted on the remote web server is potentially
prone to cross-site scripting attacks.
The remote web server hosts one or more CGI scripts that fail to
By leveraging this issue, an attacker may be able to cause arbitrary
HTML and script code to be executed in a user's browser within the
security context of the affected site.
This script identified patterns that were injected to test 'reflected'
(aka 'non-persistent') XSS. The issues are likely to be 'persistent'
(or 'stored') after all.
See also :
Restrict access to the vulnerable application and contact the vendor
for a patch or upgrade.
Risk factor :
Medium / CVSS Base Score : 4.3
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now