Vulnerabilities > Citrix > Netscaler
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-11-30 | CVE-2007-6192 | Cryptographic Issues vulnerability in Citrix Netscaler 8.0 The web management interface in Citrix NetScaler 8.0 build 47.8 uses weak encryption (XOR of unpadded data) to store credentials within a cookie, which makes it easier for remote attackers to obtain cleartext credentials when a cookie is captured via a known-plaintext attack. | 4.3 |
2007-11-20 | CVE-2007-6037 | Cross-Site Scripting vulnerability in Citrix Netscaler 8.0Build47.8 Cross-site scripting (XSS) vulnerability in ws/generic_api_call.pl in Citrix NetScaler 8.0 build 47.8 allows remote attackers to inject arbitrary web script or HTML via the standalone parameter and other unspecified parameters. | 4.3 |