Citrix

CVE-2024-xxxx - Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE

GitHub - watchtowrlabs/Citrix-Virtual-Apps-XEN-Exploit: Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCEGitHub

CVE-2024-8068 and CVE-2024-8069

GitHub - XiaomingX/cve-2024-8069-exp-Citrix-Virtual-Apps-XEN: Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCEGitHub

CVE-2023-4966 - Citrix Bleed: Leaking Session Tokens

exploits/citrix/CVE-2023-4966/exploit.py at main · assetnote/exploitsGitHub

CVE-2023-24488

XSS and Open Redirec in Citrix ADC and Citrix Gateway

GitHub - securitycipher/CVE-2023-24488: POC for CVE-2023-24488GitHub

PoC:

/oauth/idp/logout?post_logout_redirect_uri=%0d%0a%0d%0a%3Cscript%3Ealert(document.cookie)%3C/script%3E

Nuclei Template:

nuclei-templates/CVE-2023-24488.yaml at master · k00kx/nuclei-templatesGitHub

CVE-2023-3519 - Citrix ADC RCE

Citrix VPX 13.1-48.47

GitHub - BishopFox/CVE-2023-3519: RCE exploit for CVE-2023-3519GitHub