Lucene search
HistoryFeb 20, 2005 - 5:00 a.m.
CVE-2004-1584
crlf injection
wp-login.php
wordpress 1.2
http response splitting
vulnerability
cve-2004-1584
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.048 Low
EPSS
Percentile
92.8%
CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.
Affected configurations
Node
wordpresswordpressMatch1.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress:wordpress | wordpress | eq | 1.2 |
Related
nessus
nessus
GLSA-200410-12 : WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
WordPress 'wp-login.php' HTTP Response Splitting
2004-10-08 00:00:00
patchstack
patchstack
WordPress <=1.2 - CRLF (Carriage Return Line Feed) injection
2005-02-20 00:00:00
cvelist
cvelist
CVE-2004-1584
2005-02-20 05:00:00
nvd
nvd
CVE-2004-1584
2004-12-31 05:00:00
gentoo
gentoo
WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2004-1584
2005-02-20 05:00:00
wpvulndb
wpvulndb
WordPress 1.2 - HTTP Response Splitting
2004-12-31 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.048 Low
EPSS
Percentile
92.8%
Related for CVE-2004-1584