VYPR
Unrated severityNVD Advisory· Published Jul 14, 2009· Updated Jun 16, 2026

CVE-2009-2454

CVE-2009-2454

Description

Cross-site scripting (XSS) vulnerability in Citrix Web Interface 4.6, 5.0, and 5.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

4
  • cpe:2.3:a:citrix:web_interface:4.6:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:citrix:web_interface:4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:citrix:web_interface:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:citrix:web_interface:5.0.1:*:*:*:*:*:*:*
    • (no CPE)range: 4.6, 5.0, 5.0.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.