Nessus Plugin #11448
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
Siteframe Cross Site Scripting Bugs
- Family:
- CGI abuses : XSS
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2003 k-otik.com
- Summary:
- Determine if Siteframe is vulnerable to xss attack
- Version:
- $Revision: 1.12 $
- Cve_id:
- -
- Bugtraq_id:
- 7140, 7143
- Xrefs:
- -
- Description:
Siteframe 2.2.4 has a cross site scripting bug. An attacker may use it to
perform a cross site scripting attack on this host.
In addition to this, another flaw in this package may allow an attacker to
obtain the physical path to the remote web root.
Solution : Upgrade to a newer version.
Risk factor : Medium
Generiert am 27.04.2005 um 18:49:54 Uhr.