Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2003-1157

Publish Date: 31 Oct 2003

                							

                source: http://www.securityfocus.com/bid/8939/info

Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page. Exploitation of this issue could potentially result in the theft of cookie-based authentication credentials, or other attacks.

https://www.example.com/citrix/metaframexp/default/login.asp?NFuse_LogoutId=On&amp;NFuse_
MessageType=Error&amp;NFuse_Message=&lt;SCRIPT&gt;alert("Vulnerable to XSS")&lt;/SCRIPT&gt;

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Citrix Metaframe XP - Cross-Site Scripting

Vulmon Search

About

Products

Connect