4 matches found
CVE-2009-2454
CVE-2009-2454 is an XSS vulnerability in Citrix Web Interface affecting version 4.6, 5.0 and 5.0.1, enabling remote attackers to inject arbitrary web script or HTML via unspecified vectors. The connected records confirm the vulnerability class and affected product line, with CVSS base score 4.3 (...
CVE-2007-6477
Technical details for CVE-2007-6477 are not publicly available in the provided documents. No concrete information on affected products, root cause, or remediation is provided here. Monitor for updates.
CVE-2010-4515
CVE-2010-4515 affects Citrix Web Interface 5.x, specifically versions earlier than 5.4.0. The vulnerability is described as a cross-site scripting (XSS) issue with unspecified vectors. Affected product: Citrix Web Interface 5.0/5.1/5.3 (per the CVE description and corroborated by third‑party advi...
CVE-2008-6830
CVE-2008-6830 affects Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers. The disconnection feature does not properly terminate a user Web Interface session, enabling an attacker with access to the same browser instance and valid credentials to gain access to that user’s Web Interfac...