Lucene search
PRIOn knowledge basePRION:CVE-2013-1647HistorySep 05, 2013 - 11:44 a.m.
Crlf injection
2013-09-0511:44:00
PRIOn knowledge base
www.prio-n.com
4
Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted parameter, as demonstrated by (1) the location parameter to ajax/redirect or (2) multiple infostore URIs.
| CPE | Name | Operator | Version |
|---|---|---|---|
| open-xchange_server | eq | 6.22.1 | |
| open-xchange_server | eq | 6.20.7 | |
| open-xchange_server | eq | 6.22.0 |
Related
cvelist
cvelist
CVE-2013-1647
2022-10-03 16:14:47
nvd
nvd
CVE-2013-1647
2013-09-05 11:44:57
cve
cve
CVE-2013-1647
2022-10-03 16:14:47
openvas
openvas
Open-Xchange Server Multiple Vulnerabilities (Mar 2013) - Active Check
2013-03-18 00:00:00
securityvulns
securityvulns
Open-Xchange Security Advisory 2013-03-13
2013-05-06 00:00:00
exploitpack
exploitpack
Open-Xchange Server 6 - Multiple Vulnerabilities
2013-03-15 00:00:00
seebug
seebug
Open-Xchange Server 6 - Multiple Vulnerabilities
2014-07-01 00:00:00
packetstorm
packetstorm
Open-Xchange 6 XSS / LFI / SSRF / Hashing
2013-03-14 00:00:00
exploitdb
exploitdb
Open-Xchange Server 6 - Multiple Vulnerabilities
2013-03-15 00:00:00