Lucene search
K

2442 matches found

NVD
NVD
added 2013/10/03 7:55 p.m.23 views

CVE-2013-6009

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, when using AJP in certain conditions, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet...

4.3CVSS7AI score0.00958EPSS
Exploits0References1
Prion
Prion
added 2013/10/03 7:55 p.m.17 views

Crlf injection

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, when using AJP in certain conditions, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet...

4.3CVSS7.4AI score0.00958EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2013/10/03 7:0 p.m.50 views

CVE-2013-6009

Open-Xchange AppSuite is affected by a CRLF injection vulnerability (CVE-2013-6009) present before version 7.2.2 when using AJP under certain conditions. An attacker can inject arbitrary HTTP headers and trigger HTTP response splitting via the ajax/defer servlet. Affected product: Open-Xchange Ap...

4.3CVSS7.2AI score0.00958EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/10/03 7:0 p.m.23 views

CVE-2013-6009

CRLF injection vulnerability in Open-Xchange AppSuite before 7.2.2, when using AJP in certain conditions, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the ajax/defer servlet...

7AI score0.00958EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/10/03 12:0 a.m.45 views

RedHat Update for php53 RHSA-2013:1307-01

Check for the Version of php53 OpenVAS Vulnerability Test RedHat Update for php53 RHSA-2013:1307-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

10CVSS8.5AI score0.10467EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2013/10/03 12:0 a.m.46 views

RedHat Update for php53 RHSA-2013:1307-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.4AI score0.10467EPSS
Exploits5References2
securityvulns
securityvulns
added 2013/10/01 12:0 a.m.53 views

Open-Xchange Security Advisory 2013-09-30

Product: Open-Xchange AppSuite Vendor: Open-Xchange GmbH Internal reference: 28642 Bug ID Vulnerability type: CWE-80 Improper Neutralization of Script-Related HTML Tags in a Web Page Vulnerable version: prior to 7.2.2 Vulnerable component: backend Fixed version: 7.0.2-rev16, 7.2.2-rev20 Report...

3.5CVSS0.1AI score0.00767EPSS
Exploits0
NVD
NVD
added 2013/09/05 11:44 a.m.20 views

CVE-2013-1647

Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted parameter, as demonstrated by 1 the location parameter...

5CVSS7AI score0.01797EPSS
Exploits5References1
Prion
Prion
added 2013/09/05 11:44 a.m.22 views

Crlf injection

Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted parameter, as demonstrated by 1 the location parameter...

5CVSS7.5AI score0.01797EPSS
Exploits5References1Affected Software1
CVE
CVE
added 2013/09/05 10:0 a.m.56 views

CVE-2013-1647

Open-Xchange Server 6 is affected by multiple CRLF injection and related vulnerabilities (CVE-2013-1647 among others) that allow remote attackers to inject HTTP headers and perform HTTP response splitting, with additional XSS and SSRF issues described across several CVEs. Affected versions includ...

5CVSS7.1AI score0.01797EPSS
Exploits5References1Affected Software1
Cvelist
Cvelist
added 2013/09/05 10:0 a.m.31 views

CVE-2013-1647

Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted parameter, as demonstrated by 1 the location parameter...

7AI score0.01797EPSS
Exploits5References1
OSV
OSV
added 2013/08/23 4:55 p.m.5 views

CVE-2013-3373

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

8.5AI score
Exploits0References7
NVD
NVD
added 2013/08/23 4:55 p.m.17 views

CVE-2013-3373

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

5CVSS6.7AI score0.02428EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2013/08/23 4:55 p.m.19 views

CVE-2013-3373

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

5CVSS7.3AI score0.02428EPSS
Exploits0References2
Prion
Prion
added 2013/08/23 4:55 p.m.18 views

Crlf injection

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

5CVSS7.2AI score0.02428EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2013/08/23 4:0 p.m.61 views

CVE-2013-3373

CVE-2013-3373: CRLF/header injection vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via a MIME header. Affected RT versions include 3.8.x (pre-3.8.17) and 4.0.x (pre-4.0...

5CVSS8.3AI score0.02428EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2013/08/23 4:0 p.m.25 views

CVE-2013-3373

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

8.5AI score0.02428EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2013/08/23 4:0 p.m.24 views

CVE-2013-3373

CRLF injection vulnerability in Request Tracker RT 3.8.x before 3.8.17 and 4.0.x before 4.0.13 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a MIME header...

5CVSS8.7AI score0.02428EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/08/20 12:0 a.m.35 views

PHP 5.4.x < 5.4.1 Multiple Vulnerabilities

Binary data 6994.prm...

5.8CVSS9.8AI score0.06365EPSS
Exploits4References7
Packet Storm
Packet Storm
added 2013/06/28 12:0 a.m.58 views

YOPMail XSS / Injection / HTTP Response Splitting

YOPMAILAnonymous&Free email address CRLF Injection-HTTP Response Spliting/XSS/Session Token in URL ================================================================================================================================================== Report-Timeline: ================ 2013-06-01:...

Exploits0
Rows per page
Query Builder