| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
| Barracuda Spam Firewall < 3.5.12.007 Multiple Vulnerabilities (SQLi, XSS) | 22 Dec 200800:00 | – | nessus | |
| Barracuda Spam Firewall < 3.5.12.007 Multiple Vulnerabilities | 19 Dec 200800:00 | – | nessus | |
| CVE-2008-0971 | 19 Dec 200817:00 | – | cvelist | |
| EUVD-2008-0978 | 7 Oct 202500:30 | – | euvd | |
| CVE-2008-0971 | 19 Dec 200817:30 | – | nvd | |
| Barracuda Message Archiver | 16 Dec 200800:00 | – | packetstorm | |
| Cross site scripting | 19 Dec 200817:30 | – | prion | |
| Barracuda mail filtering applications multiple security vulnerabilities | 17 Dec 200800:00 | – | securityvulns |
| Source | Link |
|---|---|
| securityfocus | www.securityfocus.com/archive/1/499294/100/0/threaded |
| dcsl | www.dcsl.ul.ie/advisories/03.htm |
| securityreason | www.securityreason.com/securityalert/4792 |
| barracudanetworks | www.barracudanetworks.com/ns/support/tech_alert.php |
| securitytracker | www.securitytracker.com/id |
| secunia | www.secunia.com/advisories/33164 |
| osvdb | www.osvdb.org/50709 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| Policy Name field in Search Based Retention Policy | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| IP Configuration | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| Administration | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| Journal Accounts | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| Retention Policy | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| GroupWise Sync | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| search operations in Web Filter | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| error messages | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| hidden INPUT elements in Spam Firewall | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
| hidden INPUT elements in IM Firewall | path | index.cgi | Multiple cross-site scripting (XSS) vulnerabilities in index.cgi allow injecting arbitrary web script/HTML via various inputs across Barracuda products. | CWE-79 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation