漏洞描述
远程代码执行漏洞是指攻击者通过某些漏洞在服务器上执行任意代码,这通常是由于应用程序对外部输入的验证不足或处理不当造成的。攻击者可以利用这个漏洞上传恶意代码或直接通过HTTP请求发送恶意代码,从而控制服务器,进行包括数据窃取、网站篡改、服务器资源滥用等在内的多种恶意行为。
Citrix Virtual Apps and Desktops 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- (CVE-2025-5777)Citrix NetScaler管理接口输入验证不足导致内存读取越界漏洞
- CVE-2019-19781: Citrix Application Delivery Controller (ADC) and Gateway Directory Traversal.
- (CVE-2025-8743)Scada-LTS Virtual Data Source Property Handler Name参数跨站脚本漏洞
- POC CVE-2025-5777: Citrix NetScaler Memory Disclosure - CitrixBleed 2
- POC CVE-2015-2863: Kaseya Virtual System Administrator - Open Redirect
- POC CVE-2019-12985: Citrix SD-WAN Center - Remote Command Injection
- POC CVE-2019-12986: Citrix SD-WAN Center - Remote Command Injection
- POC CVE-2019-12987: Citrix SD-WAN Center - Remote Command Injection
- POC CVE-2019-12988: Citrix SD-WAN Center - Remote Command Injection
- POC CVE-2019-12990: Citrix SD-WAN Center - Local File Inclusion
- POC CVE-2019-19781: Citrix ADC and Gateway - Directory Traversal
- POC CVE-2020-8191: Citrix ADC/Gateway - Cross-Site Scripting
- POC CVE-2020-8193: Citrix - Local File Inclusion