Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2004-1584HistoryFeb 20, 2005 - 5:00 a.m.
CVE-2004-1584
2005-02-2005:00:00
Debian Security Bug Tracker
security-tracker.debian.org
10
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.048 Low
EPSS
Percentile
92.8%
CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wordpress | < 1.2.1-1.1 | wordpress_1.2.1-1.1_all.deb |
| Debian | 11 | all | wordpress | < 1.2.1-1.1 | wordpress_1.2.1-1.1_all.deb |
| Debian | 999 | all | wordpress | < 1.2.1-1.1 | wordpress_1.2.1-1.1_all.deb |
| Debian | 13 | all | wordpress | < 1.2.1-1.1 | wordpress_1.2.1-1.1_all.deb |
Related
cve
cve
CVE-2004-1584
2005-02-20 05:00:00
gentoo
gentoo
WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
nessus
nessus
GLSA-200410-12 : WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
WordPress 'wp-login.php' HTTP Response Splitting
2004-10-08 00:00:00
patchstack
patchstack
WordPress <=1.2 - CRLF (Carriage Return Line Feed) injection
2005-02-20 00:00:00
cvelist
cvelist
CVE-2004-1584
2005-02-20 05:00:00
nvd
nvd
CVE-2004-1584
2004-12-31 05:00:00
wpvulndb
wpvulndb
WordPress 1.2 - HTTP Response Splitting
2004-12-31 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.048 Low
EPSS
Percentile
92.8%
Related for DEBIANCVE:CVE-2004-1584