CVE-2003-1506
dansguardian - Cross-Site Scripting via DENIEDURL Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2003-1506. PoCs published by Richard Maudsley.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in DansGuardian by injecting malicious JavaScript via the DENIEDURL parameter. The PoC triggers an alert and opens a new window, confirming the vulnerability.
Description
Cross-site scripting (XSS) vulnerability in dansguardian.pl in Adelix CensorNet 3.0 through 3.2 allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the DENIEDURL parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in DansGuardian by injecting malicious JavaScript via the DENIEDURL parameter. The PoC triggers an alert and opens a new window, confirming the vulnerability.