Cross-Site Scripting Vulnerability in Citrix MetaFrame XP Server
CVE-2003-1157
Currently unrated
Summary
The Citrix MetaFrame XP Server 1.0 has a vulnerability in the login.asp file that permits remote attackers to exploit the NFuse_Message parameter. This flaw allows the injection of arbitrary web scripts or HTML, potentially compromising user sessions and sensitive data. Attackers can leverage this weakness to execute unauthorized actions, making it critical for users to secure their applications against such vulnerabilities.
References
Timeline
Vulnerability Reserved
Vulnerability published