Lucene search
K

47 matches found

nvd
nvd
added 2010/12/06 8:12 p.m.27 views

CVE-2010-2761

The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...

4.3CVSS9.1AI score0.02713EPSS
Exploits0References35
cvelist
cvelist
added 2010/12/06 8:0 p.m.29 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

9.1AI score0.02045EPSS
Exploits0References24
debiancve
debiancve
added 2010/12/06 8:0 p.m.35 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

4.3CVSS9.2AI score0.02045EPSS
Exploits0
cve
cve
added 2010/12/06 8:0 p.m.88 views

CVE-2010-4410

CGI.pm (before 3.50) and CGI::Simple (1.112 and earlier) expose a CRLF injection in the header function that allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via non-whitespace characters that follow newline characters. This is a separate issue from CVE...

4.3CVSS8.9AI score0.02045EPSS
Exploits0References24Affected Software2
cve
cve
added 2010/12/06 8:0 p.m.99 views

CVE-2010-2761

CVE-2010-2761 affects CGI.pm (before 3.50) and CGI::Simple (CGI::Simple 1.112 and earlier). The multipart_init function uses a hardcoded MIME boundary in multipart/x-mixed-replace, enabling remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via crafted input. Re...

4.3CVSS9AI score0.02713EPSS
Exploits0References35Affected Software2
ubuntucve
ubuntucve
added 2010/12/06 12:0 a.m.31 views

CVE-2010-2761

The multipartinit function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v...

4.3CVSS7.3AI score0.02713EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2010/12/06 12:0 a.m.28 views

CVE-2010-4410

CRLF injection vulnerability in the header function in 1 CGI.pm before 3.50 and 2 Simple.pm in CGI::Simple 1.112 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via vectors related to non-whitespace characters preceded by newline...

4.3CVSS7.3AI score0.02045EPSS
Exploits0References4
Rows per page
Query Builder