This script is Copyright (C) 2014 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
Users with commit access to repos served by git-web could cause cross
site scripting (XSS) issues with XML files (CVE-2011-2186).
Due to a differently formatted /etc/mime.types openSUSE is not
affected by default.
This update nevertheless turns on git-web's XSS protection mechanism
to avoid similar problems in the future.
To turn XSS protection off again put the following line in
$prevent_xss = 0;
See also :
Update the affected git-web package.
Risk factor :