This script is Copyright (C) 2004-2013 Michael J. Richardson
The web application running on the remote host has a cross-site
The remote server is running a Citrix Web Interface server that
is vulnerable to cross-site scripting. When a user fails to
authenticate, the Citrix Web Interface includes the error message
text in the URL. The error message can be tampered with to
perform a cross-site scripting attack.
See also :
Upgrade to Citrix Web Interface 2.1 or newer.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : true