Unrated severityNVD Advisory· Published Dec 20, 2007· Updated Jun 16, 2026
CVE-2007-6477
CVE-2007-6477
Description
Cross-site scripting (XSS) vulnerability in the on-line help feature in Citrix Web Interface 2.0 and earlier, and NFuse, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
3cpe:2.3:a:citrix:web_interface:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:citrix:web_interface:*:*:*:*:*:*:*:*range: <=2.0
- (no CPE)range: <=2.0
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.