EDB-4713
remotewindowsVERIFIED
barracudadrive 3.7.2 - Multiple Vulnerabilities
CVE-2007-6317CVE-2007-6316CVE-2007-6315+1 more
Luigi Auriemma12/10/2007
CVE-2007-6316
NONECross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activa
Publicado: 12/12/2007Actualizado: 4/9/2025
Descripción
Cross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activated by administrators viewing log files via the Trace page.
Análisis IAImpulsado por IA
Productos Afectados
real_time_logicbarracudadrive_web_server
3.7.2
real_time_logicbarracudadrive_web_server_home_server
3.7.2
Exploits Disponibles (1)
Referencias
- http://aluigi.altervista.org/adv/barradrive-adv.txtExploit
- http://secunia.com/advisories/28032Vendor Advisory
- http://securityreason.com/securityalert/3434
- http://www.securityfocus.com/archive/1/484833/100/0/threaded
- http://www.securityfocus.com/bid/26805ExploitPatch
- http://aluigi.altervista.org/adv/barradrive-adv.txtExploit
- http://secunia.com/advisories/28032Vendor Advisory
- http://securityreason.com/securityalert/3434
- http://www.securityfocus.com/archive/1/484833/100/0/threaded
- http://www.securityfocus.com/bid/26805ExploitPatch