Vulnerabilities > Citrix > Xenmobile Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-17 | CVE-2020-8208 | Cross-site Scripting vulnerability in Citrix Xenmobile Server Improper input validation in Citrix XenMobile Server 10.12 before RP1, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.11 before RP6 and Citrix XenMobile Server before 10.9 RP5 allows Cross-Site Scripting (XSS). | 6.1 |
| 2018-05-23 | CVE-2018-10651 | Open Redirect vulnerability in Citrix Xenmobile Server 10.7/10.8 There are Open Redirect Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3. | 6.1 |
| 2018-05-23 | CVE-2018-10649 | Cross-site Scripting vulnerability in Citrix Xenmobile Server 10.7 There is a Cross-Site Scripting Vulnerability in Citrix XenMobile Server 10.7 before RP3. | 6.1 |
| 2017-05-05 | CVE-2016-6877 | Improper Input Validation vulnerability in Citrix Xenmobile Server Citrix XenMobile Server before 10.5.0.24 allows man-in-the-middle attackers to trigger HTTP 302 redirections via vectors involving the HTTP Host header and a cached page. | 5.3 |
| 2016-04-07 | CVE-2016-2789 | Cross-site Scripting vulnerability in Citrix Xenmobile Server 10.0/10.1/10.3 Cross-site scripting (XSS) vulnerability in the Web User Interface in Citrix XenMobile Server 10.0, 10.1 before Rolling Patch 4, and 10.3 before Rolling Patch 1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |