Vulnerabilities > Nessus > WEB Server Plugin > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-08-10 | CVE-2010-2989 | Information Exposure vulnerability in Nessus web Server Plugin 1.2.4 nessusd_www_server.nbin in the Nessus Web Server plugin 1.2.4 for Nessus allows remote attackers to obtain sensitive information via a request to the /feed method, which reveals the version in a response. | 5.0 |
| 2010-07-30 | CVE-2010-2914 | Cross-Site Scripting vulnerability in Nessus web Server Plugin 1.2.4 Cross-site scripting (XSS) vulnerability in nessusd_www_server.nbin in the Nessus Web Server plugin 1.2.4 for Nessus allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |