Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netscaler vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-2839
The Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc uses an incorrect Content-Type when returning an error message, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via the file_name JSON member in params/xen_hotfix/0 to nitro/v1/config/x...
Citrix Netscaler 10.5
4.3
CVSSv2
CVE-2015-2840
Cross-site scripting (XSS) vulnerability in help/rt/large_search.html in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to inject arbitrary web script or HTML via the searchQuery parameter.
Citrix Netscaler 10.5
4.3
CVSSv2
CVE-2007-6192
The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote malicious users to obtain cleartext credentials when a cookie is captured via a known-plaintext attac...
Citrix Netscaler 8.0
5
CVSSv2
CVE-2007-6193
The web management interface in Citrix NetScaler 8.0 build 47.8 stores the device's primary IP address in a cookie, which might allow remote malicious users to obtain sensitive network configuration information if this address is not the same as the address being used by the...
Citrix Netscaler 8.0
5
CVSSv2
CVE-2015-2841
Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote malicious users to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-stream and text/xml Content-Types.
Citrix Netscaler 10.5
1 EDB exploit
4.3
CVSSv2
CVE-2007-6037
Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote malicious users to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters.
Citrix Netscaler 8.0 Build 47.8
1 EDB exploit
4.3
CVSSv2
CVE-2017-17549
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 allow remote malicious users to obtain sensitive information from the backend client TLS handshake b...
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 11.0
10
CVSSv2
CVE-2018-7218
The AppFirewall functionality in Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5 before Build 68.7, 11.0 before Build 71.24, 11.1 before Build 58.13, and 12.0 before Build 57.24 allows remote malicious users to execute arbitrary code via unspecified ve...
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 11.0
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
4.3
CVSSv2
CVE-2017-17382
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 might allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA...
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 11.0
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.0
Citrix Netscaler Gateway Firmware 12.0
3.5
CVSSv2
CVE-2018-18517
Citrix NetScaler Gateway 10.5.x prior to 10.5.69.003, 11.1.x prior to 11.1.59.004, 12.0.x prior to 12.0.58.7, and 12.1.x prior to 12.1.49.1 has XSS.
Citrix Netscaler Gateway Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »