Multiple cross-site scripting (XSS) vulnerabilities in Barracuda SSL VPN before 2.2.2.203 (2012-07-05) allow remote attackers to inject arbitrary web script or HTML via the (1) policyLaunching, (2) resourcePrefix, or (3) actionPath parameter in showUserResourceCategories.do; (4) list or (5) path parameter to fileSystem.do; or (6) return-To parameter to launchAgent.do.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2012-08-31T20:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2012-08-31T00:00:00
Link: CVE-2012-4739
JSON object: View
NVD Information
Status : Modified
Published: 2012-08-31T20:55:08.327
Modified: 2017-08-29T01:32:21.337
Link: CVE-2012-4739
JSON object: View
Redhat Information
No data.
CWE