It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-00322: Non-persistent XSS requiring authentication in Barracuda Web Application Firewall v7.6.4

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006585

Scope:

Barracuda Web Application Firewall 7.6.4 & earlier (resolved in 7.6.4.015)

Severity: Low

Description:

The product versions listed above contain an unresolved non-persistent XSS vulnerability. To trigger this attack an attacker must authenticate as an administrative user prior to delivering the attack. The attack provides no privilege escalation and poses no viable risk to our customers.

For maximum protection, Barracuda Networks recommends that all customers ensure that their attack and security definitions are set to On and to upgrade to the latest generally available release of the firmware and security definitions.

Credits:

Adam Chester

Link to this page:

https://campus.barracuda.com/solution/501600000013kPQAAY