VYPR

Advanced Access Control

by Citrix Systems

CVEs (1)

  • CVE-2007-0011Nov 5, 2007
    risk 0.00cvss epss 0.02

    The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent attackers to hijack sessions by reading "residual information", including the a referer log,…