Barracuda Icon
Live Chat

Hi, I'm Rosa.
How may I help you?

How may I help you?

Click below to send us a Message

Contact Support

Barracuda's award-winning technical support is available 24x7 worldwide.
Your time is valuable, which is why we will always connect you with a live person.

Back to Knowledgebase

BNSEC-01052 Authenticated, non-persistent XSS, remotely exploitable vulnerability in Spam Firewall

Solution #00006606


Fixed in Spam Firewall,

Severity: Low


This vulnerability is a non-persistent XSS. Successful exploitation requires an authenticated user to manipulate his own request to deliver a script payload. The attack has not been found to result in any privilege escalation and is considered a code hygiene problem and not a vulnerability.

To ensure maximum protection Barracuda Networks recommends that all customers upgrade to the latest generally available firmware and enable all definition updates.


hauntit blog,Vulnerability Lab,William Costa,Yogesh D Jaygadkar

Link to this page: