Tenable Appliance versions 4.6.1 and earlier have been found to contain a single XSS vulnerability. Utilizing a specially crafted request, an authenticated attacker could potentially execute arbitrary JavaScript code by manipulating certain URL parameters related to offline plugins.
[
{
"product": "Tenable Appliance",
"vendor": "Tenable",
"versions": [
{
"status": "affected",
"version": "Tenable Appliance versions"
}
]
}
]