Multiple cross-site scripting (XSS) vulnerabilities in Barracuda SSL VPN before 2.2.2.203 (2012-07-05) allow remote attackers to inject arbitrary web script or HTML via the (1) policyLaunching, (2) resourcePrefix, or (3) actionPath parameter in showUserResourceCategories.do; (4) list or (5) path parameter to fileSystem.do; or (6) return-To parameter to launchAgent.do.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2012-08-31T20:00:00

Updated: 2024-08-06T20:42:54.981Z

Reserved: 2012-08-31T00:00:00

Link: CVE-2012-4739

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-08-31T20:55:08.327

Modified: 2024-11-21T01:43:26.233

Link: CVE-2012-4739

cve-icon Redhat

No data.