2 matches found
CVE-2014-4335
CVE-2014-4335 affects BarracudaDrive 6.7.2, where multiple XSS vulnerabilities allow remote attackers to inject arbitrary script or HTML via the rtl/protected/admin/ddns/ parameters (host or password). Root cause: insufficient input sanitization in the affected web interface. Impact: attacker can...
CVE-2014-3807
Multiple cross-site scripting XSS vulnerabilities in BarracudaDrive 6.7.2 allow remote attackers to inject arbitrary web script or HTML via the 1 blog, 2 bloggeruser, or 3 bloggerpasswd parameter to private/manage/...