CVE-2007-6037
published 2007-11-20CVE-2007-6037: Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
3.58%
87.9th percentile
Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| citrix | netscaler | — | — |
| citrix | netscaler_adc_gateway | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Citrix
CVE-2007-6037: Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web
vendor_citrix·2007-11-20·CVSS 4.3
CVE-2007-6037 [MEDIUM] CWE-79 CVE-2007-6037: Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web
CVE-2007-6037: Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters.
GHSA
GHSA-wx9x-3hjm-589w: Cross-site scripting (XSS) vulnerability in ws/generic_api_call
ghsa_unreviewed·2022-05-01
CVE-2007-6037 [MEDIUM] CWE-79 GHSA-wx9x-3hjm-589w: Cross-site scripting (XSS) vulnerability in ws/generic_api_call
Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters.
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/39009http://secunia.com/advisories/27726http://securityreason.com/securityalert/3377http://www.securityfocus.com/archive/1/483920/100/0/threadedhttp://www.securityfocus.com/bid/26491http://www.securitytracker.com/id?1018981http://www.vupen.com/english/advisories/2007/4065https://exchange.xforce.ibmcloud.com/vulnerabilities/38563http://osvdb.org/39009http://secunia.com/advisories/27726http://securityreason.com/securityalert/3377http://www.securityfocus.com/archive/1/483920/100/0/threadedhttp://www.securityfocus.com/bid/26491http://www.securitytracker.com/id?1018981http://www.vupen.com/english/advisories/2007/4065https://exchange.xforce.ibmcloud.com/vulnerabilities/38563
2007-11-20
Published