CVE-2003-1506

Daniel Barron Dansguardian - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in dansguardian.pl in Adelix CensorNet 3.0 through 3.2 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the DENIEDURL parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Richard Maudsley · textwebappscgi

https://www.exploit-db.com/exploits/23275

View Code ZIP pw:eip

References (6)

Core 6

Core References

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/3299

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/342160

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/342577

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/13507

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/342551

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/8876

Scores

EPSS 0.0069

EPSS Percentile 71.9%

Details

CWE

CWE-79

Status published

Products (4)

daniel_barron/dansguardian 3.0

daniel_barron/dansguardian 3.1_r5

daniel_barron/dansguardian 3.1_r6

daniel_barron/dansguardian 3.2

Published Dec 31, 2003

Tracked Since Feb 18, 2026