Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-194: Citrix MetaFrame Web Manager 'login.asp' Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-194: Citrix MetaFrame Web Manager 'login.asp' Vulnerability
# 1  
Old 02-25-2008
S-194: Citrix MetaFrame Web Manager 'login.asp' Vulnerability
Citrix MetaFrame Web Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. The risk is MEDIUM. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. Web Development

ASP.NET 5 Application on Centos OS7 Web Hosting Server

Hi All, Frankly I'm new to Linux Environment. While we are trying to Host an ASP.NET 5 Web Application on Centos OS7 Web hosting Server. There were couple of steps which we are supposed to go through, please see this link - We are stuck at Create a Container & then Running the Container,... (1 Reply)
Discussion started by: John Fredric
1 Replies

2. Cybersecurity

APACHE: Tie in Web Page login with server login

Hello, I have created a web page on a server using apache and added .htaccess and .htpasswd in the folder for authentification. I was wondering if there was anyway to tie-in the login for this page with the login used to logon to the server. i.e. the same login info. is used for both, when... (1 Reply)
Discussion started by: WhotheWhat
1 Replies

3. Solaris

How to install citrix metaframe server in Solairs 9 and 10,

How to install citrix metaframe server in Solairs 9 and 10, Plese help me if anybody having instllation procedure. your help greatly appreciated. Thanks & Regards Durgaprasad (0 Replies)
Discussion started by: durgaprasadr13
0 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

web::simple::deployment

Web::Simple::Deployment(3pm)				User Contributed Perl Documentation			      Web::Simple::Deployment(3pm)

NAME

       Web::Simple::Deployment - various deployment options

DESCRIPTION

       This file documents common deployment methods for Web::Simple. If you feel one is missing, please ask in the IRC channel and we'll work
       with you to add it.

CGI

       The most basic deployment option is as a CGI script loading and running your Web::Simple-module:

	 #!/usr/bin/env perl

	 use Your::Web::Simple::App;
	 Your::Web::Simple::App->run_if_script;

       Save that as script.cgi and your web server will handle it correctly.

Plack-Server
       This works in with exactly the same code as CGI deployment. However instead of letting your web server load script.cgi, you run this on the
       command line:

	 plackup script.cgi

   Self-contained CGI
       Sometimes your app is so small that you have only one or two tiny classes that you want to run as a CGI script. Web::Simple offers a
       helpful mechanism to achieve that.

	 #!/usr/bin/env perl

	 use Web::Simple 'HelloWorld';	 # enables strictures and warnings for the file
					 # additionally, HelloWorld is upgraded to a
					 # Web::Simple application
	 {
	   package HelloWorld;

	   sub dispatch_request {
	     sub (GET) {
	       [
		 200,
		 [ 'Content-type', 'text/plain' ],
		 [ 'Hello world! It is a fine ' . HelloWorld::Helper->day ]
	       ]
	     },
	     sub () {
	       [ 405, [ 'Content-type', 'text/plain' ], [ 'Method not allowed' ] ]
	     }
	   }
	 }

	 {
	   package HelloWorld::Helper;

	   use DateTime;

	   sub day {
	     return DateTime->now->day_name;
	   }
	 }

	 HelloWorld->run_if_script;

AUTHORS

       See Web::Simple for authors.

COPYRIGHT AND LICENSE

       See Web::Simple for the copyright and license.

perl v5.14.2							    2012-05-07					      Web::Simple::Deployment(3pm)