Squidguard: >> Squidguard Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link.
CVSS Score
6.1
EPSS Score
0.003
Published
2017-02-09
Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode."
CVSS Score
5.0
EPSS Score
0.034
Published
2009-10-28
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL that contains information about the originally requested URL.
CVSS Score
5.0
EPSS Score
0.017
Published
2009-10-28