It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Campus Help Center / Reference

BNSEC-00279: Authenticated persistent XSS in Barracuda Web Filter v6.0.0

  • Type: Knowledgebase
  • Date changed: 2 years ago

Solution #00006587

Scope:

Barracuda Web Filter v6.0.0 and earlier (resolved in 6.0.0)

Severity: Medium

Description:

This vulnerability allows a remote attacker to inject malicious JavaScript into an authorized user's web user interface. Successful exploitation of the vulnerability can lead to session hijacking or persistent context manipulation. Exploitation requires low user interaction.

For maximum protection, Barracuda Networks recommends that all customers ensure that their attack and security definitions are set to On and to upgrade to the latest generally available release of the firmware and security definitions.

Credits:

Benjamin Mejri & Chokri Ben Achour of Vulnerability Laboratory

Link to this page:

https://campus.barracuda.com/solution/501600000013kPaAAI