7.3 High
AI Score
Confidence
Low
0.062 Low
EPSS
Percentile
93.6%
CRLF injection vulnerability in Kallithea before 0.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the came_from parameter to _admin/login.
packetstormsecurity.com/files/133897/Kallithea-0.2.9-HTTP-Response-Splitting.html
www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5267.php
kallithea-scm.org/security/cve-2015-5285.html
www.exploit-db.com/exploits/38424/