[R1] Tenable Appliance 4.7.0 Fixes One Vulnerability

2018-03-27T20:43:26
ID TENABLE:BB61F3B8C17D4948DDCD77AEBFCDDE05
Type tenable
Reporter Arnie Cabral
Modified 2018-03-27T20:43:26

Description

Tenable Appliance versions 4.6.1 and earlier have been found to contain a single XSS vulnerability. Utilizing a specially crafted request, an authenticated attacker could potentially execute arbitrary JavaScript code by manipulating certain URL parameters related to offline plugins.