CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Citrix: >> Nfuse >> 1.5 Security Vulnerabilities

CVE-2002-0503

Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the NFuse_Template parameter.

CVSS Score

5.0

EPSS Score

0.025

Published

2002-08-12

CVE-2002-0504

Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote attackers to execute script in other clients via the NFuse_Application parameter to (1) launch.jsp or (2) launch.asp.

CVSS Score

7.5

EPSS Score

0.062

Published

2002-08-12

Page 1

Vulnerabilities

Vulnerable Software

Citrix: >> Nfuse >> 1.5 Security Vulnerabilities

Products

Pricing

Contact Us