Summary
The remote host runs SafetyNet Plus, a popular educational filtering service.
This version is vulnerable to multiple cross-site scripting due to a lack of sanitization of user-supplied data.
Successful exploitation of this issue may allow an attacker to execute malicious script code on a vulnerable server.
Solution
Upgrade to the latest version of this software
Severity
Classification
-
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Aardvark Topsites <= 4.2.2 Remote File Inclusion Vulnerability
- Apache Tomcat 'sendfile' Request Attributes Information Disclosure Vulnerability
- Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability
- Adobe ColdFusion Unspecified Information Disclosure Vulnerability
- AMSI 'file' Parameter Directory Traversal Vulnerability