2 matches found
CVE-2014-4335
Multiple cross-site scripting XSS vulnerabilities in BarracudaDrive 6.7.2 allow remote attackers to inject arbitrary web script or HTML via the 1 host or 2 password parameter to rtl/protected/admin/ddns/...
CVE-2014-4335
CVE-2014-4335 affects BarracudaDrive 6.7.2, where multiple XSS vulnerabilities allow remote attackers to inject arbitrary script or HTML via the rtl/protected/admin/ddns/ parameters (host or password). Root cause: insufficient input sanitization in the affected web interface. Impact: attacker can...