Summary
The remote server is running a version of PsNews (a content management system) which is older than 1.2.
This version is affected by multiple cross-site scripting flaws. An attacker may exploit these to steal the cookies from legitimate users of this website.
Solution
Upgrade to a newer version.
Severity
Classification
-
CVE CVE-2004-1665 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache Solr Directory Traversal Vulnerability Jan-14
- Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability
- Apache ActiveMQ Persistent Cross-Site Scripting Vulnerability
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
- Apache mod_proxy_ajp Information Disclosure Vulnerability