Test ID:	1.3.6.1.4.1.25623.1.0.902504
Category:	Web application abuses
Title:	Xymon Monitor Unspecified Multiple Cross Site Scripting Vulnerabilities
Summary:	Xymon Monitor is prone to unspecified multiple cross site scripting vulnerabilities.
Description:	Summary: Xymon Monitor is prone to unspecified multiple cross site scripting vulnerabilities. Vulnerability Insight: The flaws are caused by improper validation of user-supplied input by multiple unspecified scripts which allows attackers to execute arbitrary HTML and script code on the web server. Vulnerability Impact: Successful exploitation could allow remote attackers to execute arbitrary HTML and script code in a user's browser session in context of an affected site. Affected Software/OS: Xymon Monitor versions 4.3.0 and prior. Solution: Upgrade to Xymon Monitor version 4.3.1 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1716 BugTraq ID: 47156 http://www.securityfocus.com/bid/47156 Bugtraq: 20110403 Xymon monitor cross-site scripting vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/517316/100/0/threaded Bugtraq: 20110404 Re: Xymon monitor cross-site scripting vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/517325/100/0/threaded http://osvdb.org/71489 http://secunia.com/advisories/44036 http://securityreason.com/securityalert/8209 XForce ISS Database: xymonmonitor-multiple-xss(66542) https://exchange.xforce.ibmcloud.com/vulnerabilities/66542
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.