CVE-2003-1506

Daniel Barron Dansguardian - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in dansguardian.pl in Adelix CensorNet 3.0 through 3.2 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the DENIEDURL parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Richard Maudsley · textwebappscgi

https://www.exploit-db.com/exploits/23275

View Code ZIP pw:eip

References (6)

[Exploit] http://www.securityfocus.com/bid/8876

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/13507

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/342160

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/342551

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/342577

[Third Party Advisory] http://securityreason.com/securityalert/3299

Scores

EPSS 0.0069

EPSS Percentile 71.5%

Classification

CWE

CWE-79

Status draft

Affected Products (4)

daniel_barron/dansguardian

Timeline

Published Dec 31, 2003

Tracked Since Feb 18, 2026