CVE-2007-6477

Currently unrated

Key Information:

Vendor: Citrix
Status: Web Interface
Vendor: CVE Published:; 20 December 2007

Summary

Cross-site scripting (XSS) vulnerability in the on-line help feature in Citrix Web Interface 2.0 and earlier, and NFuse, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.securitytracker.com/id?1019132

vdb-entryx_refsource_SECTRACK

http://www.vupen.com/english/advisories/2007/4254

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/39123

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 20, 2007
Vulnerability Reserved
Dec 20, 2007