Vulnerability Details CVE-2007-6037
Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.102
EPSS Ranking 92.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://osvdb.org/39009
- http://secunia.com/advisories/27726
- http://securityreason.com/securityalert/3377
- http://www.securityfocus.com/archive/1/483920/100/0/threaded
- http://www.securityfocus.com/bid/26491
- http://www.securitytracker.com/id?1018981
- http://www.vupen.com/english/advisories/2007/4065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38563
- http://osvdb.org/39009
- http://secunia.com/advisories/27726
- http://securityreason.com/securityalert/3377
- http://www.securityfocus.com/archive/1/483920/100/0/threaded
- http://www.securityfocus.com/bid/26491
- http://www.securitytracker.com/id?1018981
- http://www.vupen.com/english/advisories/2007/4065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38563