Lucene search
K

55 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.73 views

Citrix ADC and Gateway - Directory Traversal

Citrix Application Delivery Controller ADC and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0 are susceptible to directory traversal vulnerabilities. id: CVE-2019-19781 info: name: Citrix ADC and Gateway - Directory Traversal author: organiccrap,geeknik severity: critical description: Citrix Applicatio...

9.8CVSS8.8AI score0.99999EPSS
Exploits48References5
Gitee
Gitee
added 2025/07/06 2:51 a.m.76 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

PoC exploit for CVE-2019-19781, a vulnerability in Citrix Application Delivery Controller ADC and Gateway. The repository, CitrixHoneypot, is a honeypot designed to detect and log scan and exploitation attempts for this vulnerability. The tool is written in Python and uses the http.server module ...

9.8CVSS7.7AI score0.99999EPSS
Exploits48
RedhatCVE
RedhatCVE
added 2025/05/22 10:9 a.m.12 views

CVE-2019-19781

An issue was discovered in Citrix Application Delivery Controller ADC and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal...

9.8CVSS9.8AI score0.99999EPSS
Exploits48References1
Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.364 views

Citrix ADC (NetScaler) Directory Traversal Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Citrix ADC NetScaler Directory Traversal Scanner', 'Description' = % This module exploits a directory traversal vulnerability CVE-2019-19781 with...

9.8CVSS7.6AI score0.99999EPSS
Exploits48
Openbugbounty
Openbugbounty
added 2023/02/19 10:27 a.m.10 views

ontargetrimfireclub.co.uk Improper Access Control vulnerability OBB-3197999

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

0.1AI score
Exploits0
Information Security Automation
Information Security Automation
added 2022/10/21 8:10 p.m.160 views

Joint Advisory AA22-279A and Vulristics

Hello everyone! This episode will be about the new hot twenty vulnerabilities from CISA, NSA and FBI, Joint cybersecurity advisory CSA AA22-279A, and how I analyzed these vulnerabilities using my open source project Vulristics. Alternative video link for Russia: Americans cant just release a list...

10CVSS1.1AI score0.99999EPSS
Exploits967
ThreatPost
ThreatPost
added 2021/07/16 9:7 p.m.527 views

Top CVEs Trending with Cybercriminals

Criminal small talk in underground forums offer critical clues about which known Common Vulnerabilities and Exposures CVEs threat actors are most focused on. This, in turn, offers defenders clues on what to watch out for. An analysis of such chatter, by Cognyte, examined 15 cybercrime forums...

10CVSS9.3AI score0.99999EPSS
Exploits491References15
The Hacker News
The Hacker News
added 2021/05/08 12:24 p.m.524 views

Top 12 Security Flaws Russian Spy Hackers Are Exploiting in the Wild

Cyber operatives affiliated with the Russian Foreign Intelligence Service SVR have switched up their tactics in response to previous public disclosures of their attack methods, according to a new advisory jointly published by intelligence agencies from the U.K. and U.S. Friday. "SVR cyber operato...

10CVSS0.4AI score0.99999EPSS
Exploits356
The Hacker News
The Hacker News
added 2021/04/27 9:14 a.m.216 views

FBI, CISA Uncover Tactics Employed by Russian Intelligence Hackers

The U.S. Cybersecurity and Infrastructure Security Agency CISA, Department of Homeland Security DHS, and the Federal Bureau of Investigation FBI on Monday published a new joint advisory as part of their latest attempts to expose the tactics, techniques, and procedures TTPs adopted by the Russian...

10CVSS1.3AI score0.99999EPSS
Exploits93
Metasploit
Metasploit
added 2021/04/16 5:42 p.m.329 views

Citrix ADC (NetScaler) Directory Traversal RCE

This module exploits a directory traversal in Citrix Application Delivery Controller ADC, aka NetScaler, and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0, to execute an arbitrary command payload. Module Options msf use exploit/freebsd/http/citrixdirtraversalrce msf exploitcitrixdirtraversalrce show...

9.8CVSS9.9AI score0.99999EPSS
Exploits48
Citrix
Citrix
added 2020/11/09 12:0 a.m.8 views

CVE-2019-19781 - Verification Tool

Objective The Check-CVE-2019-19781 tool will enable customers to identify AAA and Gateway endpoints on Citrix ADC and Citrix Gateway devices in their deployment that are vulnerable to CVE-2019-19781. Customers are also encouraged to run the tool upon application of the mitigation steps to ensure...

9.8CVSS7.4AI score0.99999EPSS
Exploits48
GithubExploit
GithubExploit
added 2020/07/30 5:37 p.m.127 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

CVE-2019-19781 Simple POC to test if your Citrix ADC Nets...

9.8CVSS9.8AI score0.99999EPSS
Exploits48
GithubExploit
GithubExploit
added 2020/07/17 11:52 a.m.188 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

Citrix Unauthorized Remote Code Execution Attacker - CVE-2019-...

9.8CVSS10AI score0.99999EPSS
Exploits48
ICS
ICS
added 2020/05/21 12:0 p.m.92 views

Critical Vulnerability in Citrix Application Delivery Controller, Gateway, and SD-WAN WANOP

Summary Note: As of January 24, 2020, Citrix has released all expected updates in response to CVE-2019-19781.1 On January 19, 2020, Citrix released firmware updates for Citrix Application Delivery Controller ADC and Citrix Gateway versions 11.1 and 12.0. On January 22, 2020, Citrix released...

9.8CVSS9.9AI score0.99999EPSS
Exploits48References60
Gitee
Gitee
added 2020/04/21 1:57 a.m.6 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway CVE-2019-19781...

9.8CVSS7.5AI score0.99999EPSS
Exploits48
FireEye
FireEye
added 2020/03/25 12:0 a.m.654 views

This Is Not a Test: APT41 Initiates Global Intrusion Campaign Using Multiple Exploits

Beginning this year, FireEye observed Chinese actor APT41 carry out one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years. Between January 20 and March 11, FireEye observed APT41 attempt to exploit vulnerabilities in Citrix NetScaler/ADC, Cisco routers,...

10CVSS0.3AI score0.99999EPSS
Exploits100References19
GithubExploit
GithubExploit
added 2020/01/28 12:9 p.m.157 views

Exploit for Path Traversal in Citrix Application_Delivery_Controller_Firmware

CVE-2019-19781 Just a python3 CVE-2019-19781 exploit for Citri...

9.8CVSS9.8AI score0.99999EPSS
Exploits48
FireEye
FireEye
added 2020/01/24 5:0 p.m.347 views

Nice Try: 501 (Ransomware) Not Implemented

An Ever-Evolving Threat Since January 10, 2020, FireEye has tracked extensive global exploitation of CVE-2019-19781, which continues to impact Citrix ADC and Gateway instances that are unpatched or do not have mitigations applied. We previously reported on attackers’ swift attempts to exploit thi...

7.5CVSS9.9AI score0.99999EPSS
Exploits48References11
CISA
CISA
added 2020/01/23 12:0 a.m.173 views

Citrix Releases Security Updates for SD-WAN WANOP

Citrix has released security updates to address the CVE-2019-19781 vulnerability in Citrix SD-WAN WANOP. An attacker could exploit this vulnerability to take control of an affected system. Citrix has also released an Indicators of Compromise Scanner that aims to identify evidence of successful...

7.5CVSS2.4AI score0.99999EPSS
In wildExploits48References4
The Hacker News
The Hacker News
added 2020/01/20 2:24 p.m.350 views

Citrix Releases Patches for Critical ADC Vulnerability Under Active Attack

Citrix has finally started rolling out security patches for a critical vulnerability in ADC and Gateway software that attackers started exploiting in the wild earlier this month after the company announced the existence of the issue without releasing any permanent fix. I wish I could say, "better...

9.8CVSS0.2AI score0.99999EPSS
Exploits48
Rows per page
Query Builder