Cross-site scripting (XSS) vulnerability in Tenable Nessus prior to 6.9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Tenable Nessus was found to be impacted by two authenticated stored cross-site scripting (XSS) issues
The first was via a report from Asif Balasinor, covered a reflected XSS issue that was deemed to have no risk as it could only be triggered by the authenticated user While evaluating that report the director of the Nessus development team, Nicol ...