Launchpad.net

CVE 2016-9259

Cross-site scripting (XSS) vulnerability in Tenable Nessus before 6.9.1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

See the CVE page on Mitre.org for more details.

References