Filtered by vendor Barracuda
Subscriptions
Filtered by product Message Archiver
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-8319 | 1 Barracuda | 1 Message Archiver | 2025-07-31 | 6.1 Medium |
| the BMA login interface allows arbitrary JavaScript or HTML to be written straight into the page’s Document Object Model via the error= URL parameter | ||||
| CVE-2018-20369 | 1 Barracuda | 1 Message Archiver | 2024-11-21 | N/A |
| Barracuda Message Archiver 2018 has XSS in the error_msg exception-handling value for the ldap_user parameter to the cgi-mod/ldap_load_entry.cgi module. The injection point of the issue is the Add_Update module. | ||||
Page 1 of 1.