This host is running BarracudaDrive and is prone to multiple XSS vulnerabilities.

Successful exploitation will allow attackers to execute arbitrary HTML and script code in a user's browser session in the context of a vulnerable site. Impact Level: Application

No solution or patch is available as of 20th February, 2015. Information regarding this issue will be updated once the solution details are available. For updates refer http://barracudadrive.com/

Multiple flaws exist as, - Input passed via the 'blog' parameter to 'private/manage/', 'bloggeruser' parameter to 'private/manage/', Input passed via the 'bloggerpasswd' parameter to 'private/manage/', Input passed via the 'host' and 'password' parameters is not properly verified before it is given to server for processing.

BarracudaDrive version 6.7.2

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://packetstormsecurity.com/files/126645
• http://packetstormsecurity.com/files/127128
• http://www.osvdb.com/107046
• http://xforce.iss.net/xforce/xfdb/93899

---

Updated on 2015-03-25