MariaDB: CRLF injection at https://mariadb.org/.

2019-01-07T23:12:31
ID H1:476257
Type hackerone
Reporter sergeybelove
Modified 2019-02-21T11:00:08

Description

A CRLF injection vulnerability was discovered on our website that could lead to attacks such as client side cookie injection. This has been resolved by adjusting the offending rewrite rule in our web server configuration.