Vulnerabilities > Citrix > WEB Interface > 5.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-07-14 | CVE-2009-2454 | Cross-Site Scripting vulnerability in Citrix web Interface 4.6/5.0/5.0.1 Cross-site scripting (XSS) vulnerability in Citrix Web Interface 4.6, 5.0, and 5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2009-06-08 | CVE-2008-6830 | Unspecified vulnerability in Citrix web Interface 5.0/5.0.1 The disconnection feature in Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers does not properly terminate a user's web interface session, which allows attackers with access to the same browser instance to gain access to the user's Web Interface session. | 4.0 |