Citrix AGEE Logon Portal Unspecified XSS

medium Nessus Plugin ID 67200

Synopsis

The remote web application is prone to cross-site scripting attacks.

Description

The remote Citrix AGEE web management interface is susceptible to cross-site scripting attacks.

Solution

Upgrade to version 9.2-50.4 or higher.

See Also

https://support.citrix.com/article/CTX129971

Plugin Details

Severity: Medium

ID: 67200

File Name: netscaler_agee_ctx129971.nasl

Version: 1.12

Type: remote

Published: 7/6/2013

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/h:citrix:netscaler_access_gateway:-:-:enterprise

Required KB Items: www/netscaler

Exploit Ease: No known exploits are available

Exploited by Nessus: true

Patch Publication Date: 8/23/2011

Vulnerability Publication Date: 8/23/2011

Reference Information

BID: 49294

CWE: 20, 442, 629, 711, 712, 722, 725, 74, 750, 751, 79, 800, 801, 809, 811, 864, 900, 928, 931, 990

IAVB: 2011-B-0111-S

SECUNIA: 45726