Unrated severityNVD Advisory· Published Dec 12, 2007· Updated Apr 23, 2026
CVE-2007-6316
CVE-2007-6316
Description
Cross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activated by administrators viewing log files via the Trace page.
Affected products
2- cpe:2.3:a:real_time_logic:barracudadrive_web_server:3.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:real_time_logic:barracudadrive_web_server_home_server:3.7.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- aluigi.altervista.org/adv/barradrive-adv.txtnvdExploit
- www.securityfocus.com/bid/26805nvdExploitPatch
- secunia.com/advisories/28032nvdVendor Advisory
- securityreason.com/securityalert/3434nvd
- www.securityfocus.com/archive/1/484833/100/0/threadednvd
News mentions
0No linked articles in our index yet.