CVE-2019-13608 PoC — Citrix Systems StoreFront Server 代码问题漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2019/CVE-2019-13608.yaml

Associated Vulnerability

Title:Citrix Systems StoreFront Server 代码问题漏洞 (CVE-2019-13608)
Description:Citrix Systems StoreFront Server是美国思杰系统（Citrix Systems）公司的一款企业应用程序商店。该产品主要为用户提供远程访问XenDesktop和XenApp虚拟桌面和应用程序的界面。 Citrix Systems StoreFront Server 1903之前版本、CU4 (3.12.4000)之前的7.15 LTSR版本和CU8 (3.0.8000)之前的7.6 LTSR版本中存在代码问题漏洞。该漏洞源于网络系统或产品的代码开发过程中存在设计或实现不当的问题

Description

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.

File Snapshot


 id: CVE-2019-13608

info:
  name: Citrix StoreFront Server - XML External Entity
  author: daffainfo

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!