Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive 6.7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) host or (2) password parameter to rtl/protected/admin/ddns/.
CPE | Name | Operator | Version |
---|---|---|---|
barracudadrive | eq | 6.7.2 |