|
Family: CGI abuses : XSS --> Category: attack
lednews XSS Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of lednews
Detailed Explanation for this Vulnerability Test
The remote host is running LedNews, a set of scripts designed to
help maintain a news-based website.
There is a flaw in some versions of lednews which may allow a possible hacker
to include rogue HTML code in the news, which may in turn be used to
steal the cookies of people visiting this site, or to annoy them
by showing pop-up error messages and such.
Solution : Make sure you are running the latest version of lednews
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|