On Jan 9, 2004, at 6:30 PM, Crow, Owen wrote:
While running a full scan against an Linux appliance device called Velocity
from Fineground Networks, the my_little_forum_xss.nasl plugin reported a XSS
issue on port 8083. There's not a lot of info in the output, so I checked
the script and I think this is the string used to verify the XSS issue:
You're right - it's a false positive, due to the lack of use of the 'bodyonly' function
in the function http_keepalive_send_recv(). I'll fix that, thanks !
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
