'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

vul_app: citrix_adc_directory_traversal_rce(Rule ID:1070210118)

Release Date2025/9/15

Rule NameCVE-2019-19781: Citrix ADC (NetScaler) Remote Code Execution Vulnerability

Severity:critical

CVE IDCVE-2019-19781

 

Descripiton

Citrix Systems NetScaler Gateway (Citrix Systems Gateway) and Citrix Application Delivery Controller (ADC) are both products of Citrix Systems. Citrix Systems NetScaler Gateway is a secure remote access solution. This solution can provide administrators with application-level and data-level control functions to enable users to remotely access applications and data from any location. Citrix Application Delivery Controller is an application delivery controller. The product has functions such as application delivery control and load balancing. There are security vulnerabilities in Citrix ADC and Citrix Systems Gateway. An attacker could use this vulnerability to execute code. This rule supports to defend the A6: Vulnerable and Outdated Components of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.