Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter.Referenceshttps://discussions.nessus.org/message/22174#22174http://www.osvdb.org/97584
