Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2023-24488 PoC — Cross site scripting

Source
https://github.com/NSTCyber/CVE-2023-24488-SIEM-Sigma-Rule
Associated Vulnerability
Title:Cross site scripting (CVE-2023-24488)
Description:Cross site scripting vulnerability in Citrix ADC and Citrix Gateway  in allows and attacker to perform cross site scripting
Description
Detect CVE-2023-24488 Exploitation Attempts
Readme
# Sigma Rule: Detection of Pre-Auth XSS CVE-2023-24488

Detect  Citrix Gateway  Pre-Auth XSS CVE-2023-24488  vulnerability exploitation attempts.
This Sigma rule looks for  XSS attack patterns in the `post_logout_redirect_uri` query parameter.


## Rule Description

The provided Sigma rule is designed to identify potential XSS attacks targeting the `post_logout_redirect_uri` parameter. It uses a regular expression pattern to match specific payloads commonly associated with XSS attacks.

## Usage

To utilize this Sigma rule,  You can import this rule into your SIEM platform to enhance your detection capabilities for Pre-Auth XSS CVE-2023-24488.

## Contribution

Contributions, bug reports, and suggestions are welcome! Feel free to open issues or submit pull requests to enhance the rule.
File Snapshot

 [4.0K]  /data/pocs/f761076694f67677c9cfc48599c15e61dbd04257
├── [ 682]  CVE-2023-24488.yml
└── [ 800]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →