PHPGroupWare < 0.9.16.007 Main Screen Message Script Injection
Low Nessus Network Monitor Plugin ID 3202
SynopsisThe remote host is vulnerable to a Script Injection attack.
DescriptionThe remote host seems to be running PHPGroupWare, a groupware system implemented in PHP. This version is reported vulnerable to a flaw where the Administrator can inject script code into the browsers of unsuspecting users.
SolutionUpgrade to version 0.9.16.007 or higher.