Family: CGI abuses : XSS --> Category: infos
BasiliX Content-Type XSS Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for Content-Type XSS vulnerability in BasiliX
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP script which is vulnerable to a
cross site scripting issue.
The remote host appears to be running BasiliX version 1.1.1 or lower.
Such versions are vulnerable to a cross-scripting attack whereby an
attacker may be able to cause a victim to unknowingly run arbitrary
crafted Content-Type header.
Upgrade to BasiliX version 1.1.1 fix1 or later.
See also :
Low / CVSS Base Score : 3
Click HERE for more information and discussions on this network vulnerability scan.