CVE-2005-4712

2005-12-31T05:00:00
ID CVE-2005-4712
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T20:57:00

Description

CRLF injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the login parameter. NOTE: the vendor has disputed CVE-2005-3497, and it is possible that the dispute was intended to include this issue as well.