Citrix StoreFront Server - XML External Entity

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 3.12.4000, and 7.6 LTSR before CU8 3.0.8000 allows XXE attacks. id: CVE-2019-13608 info: name: Citrix StoreFront Server - XML External Entity author: daffainfo severity: high description: | Citrix StoreFront Server before 1903, 7.15 LTSR...

EUVD-2020-29077

Malware in sbrugna...

EUVD-2022-32004

Malicious code in bioql PyPI...

CVAD 2402 - Citrix Storefront SSO failed after change the Base URL

After the customer modified the Base URL setting to use a different hostname, single sign-on SSO functionality stopped working for all users across the environment. However, when the Base URL is reverted back to the original hostname of the StoreFront server, single sign-on resumes normal operati...

CVE-2022-27503

Cross-site Scripting XSS vulnerability in Citrix StoreFront affects version 1912 before CU5 and version 3.12 before CU9...

CVE-2020-8200

Improper authentication in Citrix StoreFront Server 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server...

CVE-2019-13608

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 3.12.4000, and 7.6 LTSR before CU8 3.0.8000 allows XXE attacks...

Citrix Storefront - Error "404 - File or directory not found" when accessing Storefront URL

Browsing to Storefront web URL results in below error "404 - File or directory not found. The resource you are looking for might have been removed, had its name changed, or is temporarily unavailable."...

Applying Modern UI patch for Citrix Storefront LTSR2402 CU2 (to support CWA Linux Clients)

Symptoms or Error When users on Linux login to their Citrix Workspace App for Linux , they see an infinite progress screen or error instead of seeing the list of their apps and desktops. This is applicable only for customers where the admins have 1. Upgraded their StoreFronts to the new Storefron...

Citrix StoreFront Troubleshooting: Comprehensive Guide

Introduction This serves as a central location for common StoreFront troubleshooting articles authored and vetted by a group of Citrix subject matter experts in this area. StoreFront is an enterprise app store that aggregates applications and desktops from Citrix Virtual Apps and Desktops sites a...

How to Fix the Uninstall of StoreFront

This article describes how to fix the uninstall of Citrix StoreFront when installed using a non-English UI. When StoreFront is installed under these conditions, uninstall will fail with error code 1605, erroneously indicating the product is not installed...

How to Successfully Test Citrix StoreFront Beacons Inside a Remote Desktop Session

This article describes how to successfully test the Citrix StoreFront Beacons functionality with Citrix Receiver 3.1 Standard or later when connecting to workstations using a Remote Desktop session RDP. By default, a configured Citrix Receiver 3.1 Standard or later with Beacons and stores always...

Error: "Cannot upgrade Citrix StoreFront with Receiver for HTML5" when upgrading to StoreFront 2.x

The following error is generated whenupgrading to StoreFront 2.x: "Error Cannot upgrade Storefront for Receiver for HTML5 Use the Citrix HTML5 HDX Engine Configuration tool to remove Receiver from HTML5 from all currently configured Receiver for Web sites. Then, uninstall Receiver for HTML5 and t...

How to Configure StoreFront and Smart Card Authentication for Internal Users using Stores

This article describes how to configure Citrix StoreFront 2.0 and Smart Card authentication using Gemalto .NET cards against stores for internal users. Requirements The following components are needed to allow users connectthrough Smart Card to StoreFront: Citrix StoreFront 2.x Citrix Receiver fo...

Citrix Systems StoreFront Server Cross-Site Scripting Vulnerability

Citrix Systems StoreFront Server, a Citrix Systems company, is an integral component of Xen virtualization as part of the authentication and delivery management process. A cross-site scripting vulnerability exists in Citrix Systems StoreFront Server that stems from the presence of a cross-site...

Citrix StoreFront Security Bulletin for CVE-2023-5914

A vulnerability has been discovered in Citrix StoreFront, which, if exploited, may result in a Cross-site scripting XSS attack. Affected Versions: The following supported versions of Citrix StoreFront are affected by the vulnerability: Current Release CR Citrix StoreFront before 2308.1 Citrix...

Error code 1603 received when trying to upgrade Storefront

An error displays during Storefront upgrade "\CitrixStoreFront-x64.msi failed with error code 1603"...

User enumeration or launch failures after upgrading Citrix StoreFront to LTSR 2203 CU4

After upgrading Citrix Storefront to 2203 Cu4, a high number of launchfailures or enumeration may be reported by end users. Upon checking, you may notice that there is a high load on the CTXSite database which is related to stored procedures being invoked. As a result of this, it causes session...

Storefront Installation Error Adding Local Administrators to CitrixStorefrontAdministrators Group

Install StoreFront with below error: There was an error adding user accounts in the Administrators local group to the CitrixStorefrontAdministrators local group.See the log files described in the article 'Troubleshoot Storefront' in the Storefront product documentation. Try adding these user...

Explanation of Citrix Storefront Default Appliance

Explain default appliance gateway usage for Storefront store...