Daniel Barron: Security Vulnerabilities
DansGuardian 2.8 and earlier allows remote attackers to bypass the extension filtering rule via a hex encoded extension or . in the filename.
CVSS Score
7.5
EPSS Score
0.006
Published
2004-12-31
DansGuardian before 2.7.7-2 allows remote attackers to bypass URL filters via a ".." in the request.
CVSS Score
5.0
EPSS Score
0.002
Published
2004-12-31
Unknown vulnerability in DansGuardian before 2.6.1-13 allows remote attackers to bypass URL filters via a crafted request that causes a page to be added to the clean page cache.
CVSS Score
5.0
EPSS Score
0.002
Published
2004-12-31
Cross-site scripting (XSS) vulnerability in dansguardian.pl in Adelix CensorNet 3.0 through 3.2 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the DENIEDURL parameter.
CVSS Score
4.3
EPSS Score
0.005
Published
2003-12-31
DansGuardian before 2.4.5-1 allows remote attackers to bypass content filtering rules via hex-encoded URLs.
CVSS Score
7.5
EPSS Score
0.01
Published
2002-07-23