E20-14qp1
CVSS:
5.0 (AV:N/AC:L/Au:N/C:N/I:P/A:N)
False Positive:
t
Variants:
1
Year:
2020
Description
An authorization bypass vulnerability exists in Citrix Application Delivery Controller (ADC) and Gateway. This vulnerability can be triggered by calling the function report() in the PHP pcidss.php script. The flaw may be exploited by an unauthenticated attacker to access certain protected URL endpoints.