CVE-2019-19781 PoC — Citrix Application Delivery Controller和Citrix Systems Gateway 路径遍历漏洞

Source

Associated Vulnerability

Description

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

Readme

# CVE-2019-19781
Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]

Usage : bash CVE-2019-19781.sh IP_OF_VULNURABLE_HOST COMMAND_TO_EXECUTE 
  
  e.g : bash CVE-2019-19781.sh XX.XX.XX.XX 'cat /etc/passwd'
  
  ![CVE-2019-19781.sh demo](https://github.com/projectzeroindia/CVE-2019-19781/raw/master/CVE-2019-19781.PNG)


# Reference :

https://support.citrix.com/article/CTX267027

https://nvd.nist.gov/vuln/detail/CVE-2019-19781

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19781

File Snapshot

 [4.0K]  /data/pocs/ed520794b35dd112291c1e5e555d721eec583ffb
├── [ 37K]  CVE-2019-19781.PNG
├── [1.8K]  CVE-2019-19781.sh
└── [ 553]  README.md

0 directories, 3 files

Remarks