Summary
The remote server is running a version of PsNews (a content management system) which is older than 1.2.
This version is affected by multiple cross-site scripting flaws. An attacker may exploit these to steal the cookies from legitimate users of this website.
Solution
Upgrade to a newer version.
Severity
Classification
-
CVE CVE-2004-1665 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- Apache Archiva Multiple Vulnerabilities
- Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- @Mail 'MailType' Parameter Cross Site Scripting Vulnerability