DansGuardian before 2.7.7-2 allows remote attackers to bypass URL filters via a .. in the request.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Dansguardian | Daniel_barron | 2.7.3 (including) | 2.7.3 (including) |
| Dansguardian | Daniel_barron | 2.7.5 (including) | 2.7.5 (including) |
| Dansguardian | Daniel_barron | 2.7.6 (including) | 2.7.6 (including) |
| Dansguardian | Daniel_barron | 2.7.7 (including) | 2.7.7 (including) |
| Dansguardian | Daniel_barron | 2.7.7.1_beta (including) | 2.7.7.1_beta (including) |