Hotels Styx through 1.0.0.beta8 allows HTTP response splitting due to CRLF Injection. This is exploitable if untrusted user input can appear in a response header.
CPE | Name | Operator | Version |
---|---|---|---|
styx | eq | 1.0.0 beta3 | |
styx | eq | 1.0.0 beta4 | |
styx | eq | 1.0.0 beta5 | |
styx | eq | 1.0.0 beta6 | |
styx | eq | 1.0.0 beta7 | |
styx | eq | 1.0.0 beta9 | |
styx | eq | 1.0.0 beta2 | |
styx | eq | 1.0.0 beta1 | |
styx | le | 0.7.10 |