3 matches found
CVE-2016-9260
Cross-site scripting XSS vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files...
CVE-2016-9260
Cross-site scripting XSS vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files...
CVE-2016-9260
CVE-2016-9260 is a stored cross-site scripting (XSS) vulnerability affecting Tenable Nessus prior to version 6.9. The issue arises in how Nessus handles .nessus files, allowing an authenticated, remote attacker to inject arbitrary script/HTML into a user's browser session. Public documents consis...