关联漏洞
标题:
Citrix Systems Citrix Gateway和Citrix ADC 跨站脚本漏洞
(CVE-2023-24488)
描述:Citrix Systems Citrix Gateway(Citrix Systems NetScaler Gateway)和Citrix ADC都是美国思杰系统(Citrix Systems)公司的产品。Citrix Gateway是一套安全的远程接入解决方案。该产品可为管理员提供应用级和数据级管控功能,以实现用户从任何地点远程访问应用和数据。Citrix ADC是一个最全面的应用程序交付和负载平衡解决方案。用于实现应用程序安全性、整体可见性和可用性。 Citrix ADC 和 Citrix Gate
描述
Tools to perform exploit CVE-2023-24488
介绍
# POC for CVE-2023-24488
This tool is inspired from similar tool https://github.com/securitycipher/CVE-2023-24488 built using python, This tool was built using golang and has been refined from its python version, this tool is used for exfoliation CVE-2023-24488
Installation follow this command
```
λ ~ git clone https://github.com/LazyySec/CVE-2023-24488.git
λ ~ cd CVE-2023-24488
λ CVE-2023-24488 git:(main) go build CVE-2023-24488.go
```
To run tools follow this command
```
λ CVE-2023-24488 git:(main) ✗ ./CVE-2023-24488 --help
Develop By: LazySec
Usage of ./CVE-2023-24488:
-f string
File containing list of URLs/IPs
-o string
Output file to save vulnerable IPs
-u string
Single URL/IP to check vulnerability
```
Thanks, and enjoy using this tools :)
文件快照
[4.0K] /data/pocs/52d9ea9e58f65d7137d6c4548d7f62a1471c130d
├── [3.0K] CVE-2023-24488.go
└── [ 790] README.md
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。