Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Barracuda Spam & Virus Firewall 600 Firmware 4.0.1.009 and earlier allow remote authenticated users to inject arbitrary web script or HTML via (1) Troubleshooting in the Trace route Device module or (2) LDAP Username in the LDAP Configuration module.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Barracuda Spam和Virus WAF 600多个未明HTML代码注入漏洞
Vulnerability Description
Barracuda Spam和Virus WAF 600 Firmware 4.0.1.009版本及早期版本中存在多个未明HTML代码注入漏洞,该漏洞源于对用户提供的输入在用于动态生成内容前未经正确过滤。攻击者可利用该漏洞使自身提供的HTML和脚本代码在受影响浏览器的上下文中运行,可能允许攻击者窃取基于cookie的认证证书或者控制网站传达给用户的方式,也可能执行其他的攻击。
CVSS Information
N/A
Vulnerability Type
N/A