Detections
Analytics
NetScaler Web Management ws/generic_api_call.pl standalone Parameter XSS
medium Nessus Plugin ID 29225
Language:
Synopsis
The remote web server is prone to cross-site scripting attacks.Description
The remote Citrix NetScaler web management interface is susceptible to cross-site scripting attacks.Solution
Unknown at this time.See Also
https://www.securityfocus.com/archive/1/483920/100/0/threaded
Plugin Details
Severity: Medium
ID: 29225
File Name: netscaler_web_xss.nasl
Version: 1.16
Type: remote
Family: CGI abuses : XSS
Published: 12/6/2007
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.8
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Information
CPE: cpe:/a:citrix:netscaler
Required KB Items: www/netscaler
Exploit Ease: No exploit is required
Vulnerability Publication Date: 11/19/2007
Reference Information
CVE: CVE-2007-6037
BID: 26491
CWE: 79