Arbitrary Web Script Injection in Tenable Nessus before 6.9

Arbitrary Web Script Injection in Tenable Nessus before 6.9

CVE-2016-9260 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to handling of .nessus files.

Learn more about our Web App Pen Testing.