Citrix Web Interface vulnerabilities
4 known vulnerabilities affecting citrix/web_interface.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2010-4515MEDIUMCVSS 4.3v5.0v5.1+2 more2010-12-09
CVE-2010-4515 [MEDIUM] CVE-2010-4515: Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote att
Cross-site scripting (XSS) vulnerability in Citrix Web Interface 5.0, 5.1, and 5.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2007-6477 and CVE-2009-2454.
nvd
CVE-2009-2454MEDIUMCVSS 4.3v4.6v5.0+1 more2009-07-14
CVE-2009-2454 [MEDIUM] CWE-79 CVE-2009-2454: Cross-site scripting (XSS) vulnerability in Citrix Web Interface 4.6, 5.0, and 5.0.1 allows remote a
Cross-site scripting (XSS) vulnerability in Citrix Web Interface 4.6, 5.0, and 5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2008-6830MEDIUMCVSS 4.0v5.0v5.0.12009-06-08
CVE-2008-6830 [MEDIUM] CVE-2008-6830: The disconnection feature in Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers does no
The disconnection feature in Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers does not properly terminate a user's web interface session, which allows attackers with access to the same browser instance to gain access to the user's Web Interface session. NOTE: the attacker must also have valid credentials to the Web Interface.
nvd
CVE-2007-6477MEDIUMCVSS 4.3≤ 2.02007-12-20
CVE-2007-6477 [MEDIUM] CWE-79 CVE-2007-6477: Cross-site scripting (XSS) vulnerability in the on-line help feature in Citrix Web Interface 2.0 and
Cross-site scripting (XSS) vulnerability in the on-line help feature in Citrix Web Interface 2.0 and earlier, and NFuse, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd