Vulnerabilities > Squidguard
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-02-09 | CVE-2015-8936 | Cross-site Scripting vulnerability in Squidguard Cross-site scripting (XSS) vulnerability in squidGuard.cgi in squidGuard before 1.5 allows remote attackers to inject arbitrary web script or HTML via a blocked site link. | 6.1 |
2009-10-28 | CVE-2009-3826 | Buffer Errors vulnerability in Squidguard 1.4 Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL that contains information about the originally requested URL. | 5.0 |
2009-10-28 | CVE-2009-3700 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Squidguard 1.3/1.4 Buffer overflow in sgLog.c in squidGuard 1.3 and 1.4 allows remote attackers to cause a denial of service (application hang or loss of blocking functionality) via a long URL with many / (slash) characters, related to "emergency mode." | 5.0 |