{"vulnerability": "CVE-2025-12101", "sightings": [{"uuid": "9e2379ef-5e2b-4ee2-acd2-a30cb86f149b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3m5jzkpylhu2k", "content": "", "creation_timestamp": "2025-11-13T20:39:42.041165Z"}, {"uuid": "88a237a6-c99a-49c2-b576-a916b16e6190", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://gist.github.com/chrispatrick/ef9adba1d09172543266af24c83130a8", "content": "", "creation_timestamp": "2025-05-06T14:49:58.000000Z"}, {"uuid": "8463c921-dee1-4c6d-81d0-5e605162803d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://gist.github.com/chrispatrick/23906e07438c80d1d0b1225f644927de", "content": "", "creation_timestamp": "2025-05-15T15:33:07.000000Z"}, {"uuid": "0ac3f145-5986-412b-baf1-74f4fe9b3b86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m5k2tmokpr2b", "content": "", "creation_timestamp": "2025-11-13T21:02:37.089634Z"}, {"uuid": "fe6e5312-8466-47e8-b63f-31822e1c4137", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/javascript/cves/2025/CVE-2025-12101.yaml", "content": "", "creation_timestamp": "2025-11-12T21:14:59.000000Z"}, {"uuid": "469241bd-a908-4083-a2e9-9b5a020d9bd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/r-netsec-bot.bsky.social/post/3m5gq5g6bdr2e", "content": "", "creation_timestamp": "2025-11-12T13:13:13.141261Z"}, {"uuid": "33240009-0f8f-47d9-a75e-44249b3898a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m5i42wduf72d", "content": "", "creation_timestamp": "2025-11-13T02:19:14.052820Z"}, {"uuid": "ea037a2d-3234-423d-9f07-d02a5d413e23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/intcyberdigest.bsky.social/post/3m5xctcdjyp2a", "content": "", "creation_timestamp": "2025-11-19T03:30:11.158795Z"}, {"uuid": "efad8ee2-b1a4-4f0c-a773-39af41173dd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-b5b6d0c0-fa2226adb3ee0846", "content": "", "creation_timestamp": "2025-11-12T11:01:40.299542Z"}, {"uuid": "ec80296b-5d1d-4b26-99f2-bfaf29113f57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.poliverso.org.ap.brid.gy/post/3m5gj2qdfd4a2", "content": "", "creation_timestamp": "2025-11-12T11:09:16.812397Z"}, {"uuid": "613b5d06-791e-4d59-8ca5-3b7159c822d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3m5j3lpb7cg2g", "content": "", "creation_timestamp": "2025-11-13T11:43:24.368343Z"}, {"uuid": "82703bd4-a28e-4b05-a5ec-6746d6f375bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3m5gu4ycajm2q", "content": "", "creation_timestamp": "2025-11-12T14:24:32.901795Z"}, {"uuid": "e9ed2510-8f97-4c11-a423-51bc638be500", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-12101", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115537074371609770", "content": "", "creation_timestamp": "2025-11-12T13:57:27.429583Z"}, {"uuid": "5f1ea666-4593-40f3-a07b-82c3879b6c28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-12101", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-3f4e7d7c-867ac0d13e9371e2", "content": "", "creation_timestamp": "2025-11-14T18:46:33.559493Z"}, {"uuid": "d50654fd-78bb-458b-9590-703c06bd2766", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5eimqqdky2u", "content": "", "creation_timestamp": "2025-11-11T15:53:17.531475Z"}, {"uuid": "57fc93d9-7479-4143-9ee4-ecbc717e1804", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mby4ho3ctz2p", "content": "", "creation_timestamp": "2026-01-09T08:49:43.588121Z"}, {"uuid": "84ae7963-1851-4bf9-a3c1-97b82ea553c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/citrix-security-advisory-av25-740", "content": "", "creation_timestamp": "2025-11-12T15:33:12.000000Z"}, {"uuid": "8f731e48-56a8-416b-83a5-205e833eff43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/warthogtk.bsky.social/post/3m5he3r3xob2n", "content": "", "creation_timestamp": "2025-11-12T19:10:12.456227Z"}, {"uuid": "4b0cbadc-7a31-4be1-84fa-65302f5b3ce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3m5jrcqet4g2g", "content": "", "creation_timestamp": "2025-11-13T18:12:03.747482Z"}, {"uuid": "20f94ff7-4e38-4cab-b5d0-5b89129e3e4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5eomeyj64f2", "content": "", "creation_timestamp": "2025-11-11T17:41:16.744605Z"}, {"uuid": "c98eb5a6-ecee-4e4f-8b0c-906e0a415368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "Telegram/JTPMSiIeITdIAco4zqe7AJCP4y0ey6zBic2rAw1xqSNEfqQ", "content": "", "creation_timestamp": "2025-11-14T15:00:07.000000Z"}, {"uuid": "8461db45-0f16-44c4-8000-290e9ed7aa30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/59460", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSimple Python PoC to check Citrix NetScaler ADC/Gateway for CVE-2025-12101 reflected XSS on /cgi/logout using a crafted SAMLResponse + RelayState payload\nURL\uff1ahttps://github.com/6h4ack/CVE-2025-12101-checker\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-12T22:52:37.000000Z"}, {"uuid": "434e5082-c415-4724-9eba-cda967d58678", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/59716", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-12101 is a cross-site scripting (XSS) vulnerability impacting Citrix NetScaler ADC and Citrix NetScaler Gateway appliances when configured in certain roles (Gateway, AAA virtual server)\nURL\uff1ahttps://github.com/7amzahard/CVE-2025-21202-exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-14T09:58:36.000000Z"}, {"uuid": "696d5ddb-a1ba-4718-84c4-d164a3f9269a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "Telegram/X2X-Jjql1PrVxLlHx_faFmPla7HtOFqy0YqTW9jtSVfdBk8", "content": "", "creation_timestamp": "2025-11-13T03:00:07.000000Z"}, {"uuid": "60cb30ea-9163-4c76-9f9d-4976e38a65eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/10362", "content": "Is It CitrixBleed4? Well, No. Is It Good? Also, No. (Citrix NetScaler Memory Leak & RXSS CVE-2025-12101)\n\nhttps://labs.watchtowr.com/is-it-citrixbleed4-well-no-is-it-good-also-no-citrix-netscalers-memory-leak-rxss-cve-2025-12101/", "creation_timestamp": "2025-11-12T15:53:19.000000Z"}, {"uuid": "edbb74c5-83ce-4ee4-9608-f02bd9cf9c1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12101", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/59804", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aMulti-threaded scanner for CVE-2025-12101 - Citrix NetScaler XSS\nURL\uff1ahttps://github.com/boneys/CVE-2025-12101-Scanner\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-15T11:05:28.000000Z"}]}