HP SiteScope XSS
Medium Nessus Plugin ID 53622
SynopsisThe remote web server hosts a version of HP SiteScope that is vulnerable to a cross-site scripting attack.
DescriptionThere is a cross-site scripting vulnerability in this installation of HP SiteScope that may allow an attacker to execute arbitrary script code in the browser of an unsuspecting user. Such script code could steal authentication credentials and be used to launch other attacks.
SolutionUpgrade to version 11.1 and install hotfix SS1110110412.