Anfälligkeitssuche        Suche in 191973 CVE Beschreibungen
und 86218 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

CVE Kennung:CVE-2004-1620
Beschreibung:CRLF injection vulnerability in Serendipity before 0.7rc1 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the url parameter in (1) index.php and (2) exit.php, or (3) the HTTP Referer field in comment.php.
Test Kennungen: 1.3.6.1.4.1.25623.1.0.52735  
Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2004-1620
BugTraq ID: 11497
http://www.securityfocus.com/bid/11497
Bugtraq: 20041021 HTTP Response Splitting in Serendipity 0.7-beta4 (Google Search)
http://marc.info/?l=bugtraq&m=109841283115808&w=2
http://www.osvdb.org/11013
http://www.osvdb.org/11038
http://www.osvdb.org/11039
http://securitytracker.com/id?1011864
http://secunia.com/advisories/12909/
XForce ISS Database: serendipity-response-splitting(17798)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17798




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.