On Jun 11, 2008, at 10:05 AM, Christopher Ashby wrote: > For some reason which I'm unable to explain, the Nessus scanner will > not > detect XSS vulnerabilities in my server.. I'm using Nessus 2.2.10 and > updated the plug-ins last night (registered feed).
What sorts of requests, if any, do you see Nessus making in the web server's logs? Is Nessus at least identifying the affected scripts and testing its parameters? If so, would I be able to get a packet capture taken when you run the scan limited to just the XSS issues? George -- [EMAIL PROTECTED] _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
