Security Advisory

CVE-2012-4739

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-31 20:00:00

Last updated 2024-08-06 20:42:54

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Barracuda SSL VPN before 2.2.2.203 (2012-07-05) allow remote attackers to inject arbitrary web script or HTML via the (1) policyLaunching, (2) resourcePrefix, or (3) actionPath parameter in showUserResourceCategories.do; (4) list or (5) path parameter to fileSystem.do; or (6) return-To parameter to launchAgent.do.

← Browse all CVEs View on cve.org ↗