A cross-site scripting (XSS) vulnerability exists in OpenWrt web user-interface due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

According to its self-reported version number, the instance of Atlassian Jira hosted on the remote web server is version 7.6.x prior to 8.5.4 or 8.6.x prior to 8.7.1. It is, therefore, affected by a stored cross-site scripting (XSS) vulnerability in the REST API component. An authenticated, remote attacker can exploit this issue via the file upload feature to inject arbitrary HTML or JavaScript code in a user's browser session.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 7.4.2 or 7.5.x prior to 7.5.2. It is, therefore, affected by a cross-site scripting (XSS) vulnerability in user macro parameters. An authenticated, remote attacker can exploit this to inject HTML and JavaScript to execute arbitrary script code in a user's browser session.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to the self-reported version in the script, the version of JQuery hosted on the remote web server is greater than or equal to 1.2 and prior to 3.5.0. It is, therefore, affected by multiple cross site scripting vulnerabilities.

Note, the vulnerabilities referenced in this plugin have no security impact on PAN-OS, and/or the scenarios required for successful exploitation do not exist on devices running a PAN-OS release.

According to the self-reported version in the script, the version of JQuery hosted on the remote web server is prior to 1.9.0. It is, therefore, affected by a cross site scripting vulnerability.

The instance of Atlassian JIRA hosted on the remote web server is vulnerable to a cross-site scripting vulnerability in 'includes/decorators/global-translations.jsp' due to improper validation of user-supplied input data. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to 7.13.3 or 8.1.0. It is, therefore, affected by a cross-site scripting (XSS) vulnerability in the applinkStartingUrl parameter due to improper validation of user-supplied input data. An authenticated, remote attacker can exploit this by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to 7.4.2. It is therefore, potentially affected by a cross-site scripting (XSS) vulnerability in the orderby parameter due to improper validation of user-supplied input data. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

According to its self-reported version number, the instance of Atlassian JIRA hosted on the remote web server is prior to 7.13.1. It is therefore, potentially affected by a cross-site scripting (XSS) vulnerability in the cyclePeriod parameter due to improper validation of user-supplied input data. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

The version of IBM WebSphere Portal installed on the remote Windows host is affected by a cross-site scripting (XSS) vulnerability due to improper validation of user-supplied input before returning it to users. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

The instance of Atlassian JIRA hosted on the remote web server is vulnerable to a cross-site scripting vulnerability in the ConfigurePortalPages resource due to improper validation of user-supplied input data. An unauthenticated, remote attacker can exploit this, by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user's browser session.

According to its self-reported version number, the version of Splunk running on the remote web server is Splunk Enterprise 6.0.x prior to 6.0.15, 6.1.x prior to 6.1.14, 6.2.x prior to 6.2.14, 6.3.x prior to 6.3.12, 6.4.x prior to 6.4.9, 6.5.x prior to 6.5.5 or Splunk Light prior to 6.6.0.

It is, therefore, affected by a persistent XSS vulnerability due to improperly validated user-supplied input.
(CVE-2019-5727) An attacker can leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of JQuery library hosted on the remote web server is prior to 3.0.0. It is, therefore, affected by a cross site scripting vulnerability when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed

According to its self-reported version, the instance of Drupal running on the remote web server is 7.x prior to 7.65, 8.5.x prior to 8.5.14, or 8.6.x prior to 8.6.13. It is, therefore, affected by a cross site scripting (XSS) vulnerability in the File module/subsystem due to improper sanitization of data in uploaded files.

The version of VMware vRealize Automation installed on the remote host is 7.0.x, 7.1.x, 7.2.x, or 7.3.x < 7.3.1. It is, therefore, affected by vulnerability that may allow for a DOM-based cross-site scripting (XSS) attack. Exploitation of this issue may lead to the compromise of the vRA user's workstation.

The version of IBM WebSphere Portal installed on the remote Windows host is affected by a cross-site scripting vulnerability.

The version of Photo Station running on the remote QNAP NAS is prior to 5.7.0. It is, therefore, affected by a cross-site scripting vulnerability.

According to its self-reported version number, the phpMyAdmin application hosted on the remote web server is prior to 4.8.3. It is, therefore, affected by a cross-site Scripting vulnerability.

Note that Nessus has not attempted to exploit these issues but has instead relied only on the application's self-reported version number.

The version of CKEditor installed on the remote host is affected by a cross-site scripting vulnerability.

The included 'Enhanced Image' plugin causes CKEditor to fail to properly sanitize user-supplied input. A remote, unauthenticated attacker can leverage this issue to inject arbitrary HTML and script code into a user's browser to be executed within the security context of the affected site.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.870. It is, therefore, affected by a cross site scripting vulnerability.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.860. It is, therefore, affected by a cross site scripting vulnerability.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.850. It is, therefore, affected by multiple cross site scripting vulnerabilities.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.830. It is, therefore, affected by multiple cross site scripting vulnerabilities.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.760. It is, therefore, affected by a cross site scripting vulnerability in xmlrpc.cgi, which could potentially lead to remote code execution in certain products.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.680. It is, therefore, affected by a cross site scripting vulnerability in view.cgi.

According to its self-reported version, the Webmin install hosted on the remote host is 1.540 or lower. It is, therefore, affected by a cross site scripting vulnerability via a chfn command.

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.500. It is, therefore, affected by a cross site scripting vulnerability.

According to its self-reported version, the Webmin install hosted on the remote host is 1.370 or 1.390. It is, therefore, affected by a cross site scripting vulnerability in webmin_search.cgi

According to its self-reported version, the Webmin install hosted on the remote host is prior to 1.350. It is, therefore, affected by a number of cross site scripting vulnerabilities in pam_login.cgi

The version of Webmin installed on the remote host is older than 1.330. It is, therefore, affected by multiple cross-site scripting (XSS) vulnerabilities in chooser.cgi. These flaws allow remote attackers to inject arbitrary web script or HTML via a crafted filename. Note that Nessus has relied on the self-reported version of the sofware from either the index page or the Server header.

The version of IBM WebSphere Portal installed on the remote Windows host is affected by a reflected cross-site scripting vulnerability.

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 6.6.1.
It is, therefore, affected by a reflected cross-site scripting vulnerability in the viewdefaultdecorator resource.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 6.4.2.
It is, therefore, affected by a reflected cross-site scripting vulnerability in multiple resources that use the issuesURL parameter.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 6.3.4.
It is, therefore, affected by a reflected cross-site scripting vulnerability in the usermacros resource.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of JQuery library hosted on the remote web server is 1.x prior to 1.12.0 or 2.x prior to 2.2.0. It is, therefore, affected by a cross site scripting vulnerability when using location.host to select elements.

According to the self-reported version in the script, the version of JQuery hosted on the remote web server is 1.6.x prior to 1.6.3. It is, therefore, affected by a cross site scripting vulnerability when using location.hash to select elements.

According to its self-reported version number, the remote pfSense install is 2.3.x prior to 2.3.5 or 2.4.x prior to 2.4.2. It is, therefore, affected by multiple vulnerabilities as stated in the referenced vendor advisories.

Note: SA-17_09 only applies to 2.4.x.

According to its self-reported version number, the remote pfSense install is prior to 2.2. It is, therefore, affected by multiple vulnerabilities as stated in the referenced vendor advisories.

The version of IBM WebSphere Portal installed on the remote Windows host is 9.0.0.x prior to 9.0.0.0 CF15. It is, therefore, affected by a cross-site scripting (XSS) vulnerability which can potentially lead to the disclosure of credentials.

The version of IBM WebSphere Portal installed on the remote Windows host is 8.5.0.x prior to 8.5.0.0 CF15. It is, therefore, affected by a cross-site scripting (XSS) vulnerability which can potentially lead to the disclosure of credentials.

According to its self-reported version, the Gallery Bank Plugin for WordPress running on the remote web server is prior to 2.0.20.
It is, therefore, affected by multiple reflected cross-site scripting vulnerabilities. 

A remote attacker can exploit these issues, via a specially crafted request, to execute arbitrary code in a user's browser, within the security context of the affected site.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Check_MK running on the remote web server is affected by a reflected cross-site (XSS) scripting vulnerability in the Internal Server Error page, due to improper encoding of error log output. An unauthenticated, remote attacker can exploit this to execute arbitrary script code in a user's browser session.

The IBM WebSphere Portal installed on the remote host is version 6.1.0.x prior to 6.1.0.6 CF27, 6.1.5.x prior to 6.1.5.3 CF27, 7.0.0.x prior to 7.0.0.2 CF30, 8.0.0.x prior to 8.0.0.1 CF22, and is therefore affected by a cross-site scripting (XSS) vulnerability.

According to its self-reported version number, the version of Splunk running on the remote web server is Splunk Light 6.5.x prior to 6.6.3 or Splunk Enterprise 6.6.x prior to 6.6.3. It is, therefore, affected by multiple cross-site scripting (XSS) vulnerabilities.

ID	Name	Severity
143480	OpenWrt < 18.06.2 XSS (direct check)	Medium
139796	Atlassian Jira 7.6.x < 8.5.4, 8.6.x < 8.7.1 Stored XSS (JRASERVER-70814)	Low
139205	Atlassian Confluence < 7.4.2 / 7.5.x < 7.5.2 XSS (CONFSERVER-60102)	Low
136929	JQuery 1.2 < 3.5.0 Multiple XSS	Medium
135011	JQuery < 1.9.0 XSS	Medium
132954	Atlassian JIRA global-translations.jsp XSS (JRASERVER-61888)	Medium
132728	Atlassian JIRA < 7.13.3 / 8.x < 8.1 XSS vulnerability (JRASERVER-68855)	Low
132693	Atlassian JIRA < 7.4.2 XSS vulnerability (JRASERVER-66624)	Medium
129297	Atlassian JIRA 7.7.x < 7.13.1 XSS vulnerability (JRASERVER-69238)	Medium
129003	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1820)	Low
129002	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1673)	Medium
129001	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1483)	Medium
129000	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1445)	Low
128999	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1444)	Low
128763	Atlassian JIRA ConfigurePortalPages.jspa XSS	Medium
126702	Splunk Enterprise 6.0.x < 6.0.15, 6.1.x < 6.1.14, 6.2.x < 6.2.14, 6.3.x < 6.3.12, 6.4.x < 6.4.9, 6.5.x < 6.5.5 or Splunk Light < 6.6.0 Persistent XSS	Low
125152	JQuery < 3.0.0 XSS	Medium
123006	Drupal 7.x < 7.65 / 8.5.x < 8.5.14 / 8.6.x < 8.6.13 XSS (SA-CORE-2019-004)	Low
119037	VMware vRealize Automation 7.0.x / 7.1.x / 7.2.x / 7.3.x < 7.3.1 DOM-based XSS Vulnerability (VMSA-2018-0009)	Medium
117937	IBM WebSphere Portal XSS Vulnerability (CVE-2018-1660)	Low
117905	QNAP Photo Station < 5.7.0 Cross-Site Scripting Vulnerability	Medium
117334	phpMyAdmin < 4.8.3 Vulnerability (PMASA-2018-5)	Medium
109403	CKEditor 4.5.11 < 4.9.2 Enhanced Image Plugin XSS	Medium
108562	Webmin < 1.870 Cross Site Scripting Vulnerability	Low
108561	Webmin < 1.860 Cross Site Scripting Vulnerability	Medium
108559	Webmin < 1.850 Multiple Cross Site Scripting Vulnerabilities	Medium
108558	Webmin < 1.830 Multiple Cross Site Scripting Vulnerabilities	Medium
108557	Webmin < 1.760 xmlrpc.cgi Cross Site Scripting Vulnerability	High
108555	Webmin < 1.680 view.cgi Cross Site Scripting	Medium
108554	Webmin <= 1.540 Cross Site Scripting	Medium
108553	Webmin < 1.500 Cross Site Scripting	Medium
108552	Webmin 1.370 / 1.390 webmin_search.cgi Cross Site Scripting	Medium
108551	Webmin < 1.350 pam_login.cgi Cross Site Scripting	Medium
108541	Webmin chooser.cgi Cross-Site Scripting (< 1.330)	Medium
108488	IBM WebSphere Portal XSS Vulnerability	Medium
108487	IBM WebSphere Portal XSS Vulnerability	Medium
107260	IBM WebSphere Portal Reflected XSS Vulnerability	Medium
106949	Atlassian Confluence < 6.6.1 viewdefaultdecorator Reflected XSS (CVE-2017-18085)	Medium
106948	Atlassian Confluence < 6.4.2 issuesURL Parameter Reflected XSS (CVE-2017-18086)	Medium
106947	Atlassian Confluence < 6.3.4 usermacros Reflected XSS (CVE-2017-18084)	Low
106657	JQuery 1.x < 1.12.0 / 2.x < 2.2.0 XSS	Medium
106656	JQuery 1.6.x < 1.6.3 XSS	Medium
106506	pfSense 2.3.x < 2.3.5 / 2.4.x < 2.4.2 Multiple XSS Vulnerabilites (SA-17_08 / SA-17_09)	Medium
106492	pfSense < 2.2 Multiple XSS Vulnerabilities (SA-15_01)	Medium
106396	IBM WebSphere Portal 9.0.0.x < 9.0.0.0 CF15 Unspecified XSS (PI92039)	Medium
106395	IBM WebSphere Portal 8.5.0.x < 8.5.0.0 CF15 Unspecified XSS (PI92039)	Medium
105258	Gallery Bank Plugin for WordPress < 2.0.20 XSS	Medium
105256	Check_MK Internal Server Error XSS	Medium
102996	IBM WebSphere Portal XSS (swg22008028)	Medium
102731	Splunk Enterprise 6.6.x < 6.6.3 / Splunk Light 6.6.x < 6.6.3 Multiple XSS	Medium

CGI abuses : XSS Family for Nessus