CVE-2014-4335CVE-2014-4335

Affected configuration(s):

cpe:/a:barracudadrive:barracudadrive:6.7.2

Date published: 2014-06-19T10:55:08.597-04:00

Date last modified: 2014-06-20T13:54:09.537-04:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://packetstormsecurity.com/files/127128/BarracudaDrive-6.7.2-Cross-Site-Scripting.html

Summary: Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive 6.7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) host or (2) password parameter to rtl/protected/admin/ddns/.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *