EDB-4713
remotewindowsVERIFIED
barracudadrive 3.7.2 - Multiple Vulnerabilities
CVE-2007-6317CVE-2007-6316CVE-2007-6315+1 more
Luigi Auriemma12/10/2007
CVE-2007-6316
NONECross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activa
Published: 12/12/2007Updated: 4/9/2025
Description
Cross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activated by administrators viewing log files via the Trace page.
AI AnalysisPowered by AI
Affected Products
real_time_logicbarracudadrive_web_server
3.7.2
real_time_logicbarracudadrive_web_server_home_server
3.7.2
Available Exploits (1)
References
- http://aluigi.altervista.org/adv/barradrive-adv.txtExploit
- http://secunia.com/advisories/28032Vendor Advisory
- http://securityreason.com/securityalert/3434
- http://www.securityfocus.com/archive/1/484833/100/0/threaded
- http://www.securityfocus.com/bid/26805ExploitPatch
- http://aluigi.altervista.org/adv/barradrive-adv.txtExploit
- http://secunia.com/advisories/28032Vendor Advisory
- http://securityreason.com/securityalert/3434
- http://www.securityfocus.com/archive/1/484833/100/0/threaded
- http://www.securityfocus.com/bid/26805ExploitPatch