2442 matches found
HTTP Response Splitting vulnerability in Sun Delegated Administrator
Advisory ID Internal CORE-2009-0114 1. Advisory Information Title: HTTP Response Splitting vulnerability in Sun Delegated Administrator Advisory ID: CORE-2009-0114 Date published: 2009-04-21 Date of last update: 2009-04-21 Vendors contacted: Sun Microsystems Release mode: Coordinated release 2...
Sun Java System Delegated Administrator 6.x - HTTP Response Splitting
Sun Java System Delegated Administrator 6.x - HTTP Response Splitting source: https://www.securityfocus.com/bid/34643/info Sun Java System Delegated Administrator is prone to an HTTP response-splitting vulnerability because it fails to sufficiently sanitize user-supplied data. Attackers can...
Sun Java System Delegated Administrator 6.x - HTTP Response Splitting
source: https://www.securityfocus.com/bid/34643/info Sun Java System Delegated Administrator is prone to an HTTP response-splitting vulnerability because it fails to sufficiently sanitize user-supplied data. Attackers can leverage this issue to influence or misrepresent how web content is served,...
Mandriva Update for mono MDVSA-2008:210-1 (mono)
Check for the Version of mono OpenVAS Vulnerability Test Mandriva Update for mono MDVSA-2008:210-1 mono Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Mandriva Update for mono MDVSA-2008:210 (mono)
Check for the Version of mono OpenVAS Vulnerability Test Mandriva Update for mono MDVSA-2008:210 mono Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
Fedora Core 9 FEDORA-2009-2984 (phpMyAdmin)
The remote host is missing an update to phpMyAdmin announced via advisory FEDORA-2009-2984. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora Core 10 FEDORA-2009-3006 (phpMyAdmin)
The remote host is missing an update to phpMyAdmin announced via advisory FEDORA-2009-3006. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by...
Fedora 9 : phpMyAdmin-3.1.3.1-1.fc9 (2009-2984)
Improvements for 3.1.3.1: - security HTTP Response Splitting and file inclusion vulnerabilities - security XSS vulnerability on export page - security Insufficient output sanitizing when generating configuration file Note that Tenable Network Security has extracted the preceding description block...
Crlf injection
CRLF injection vulnerability in bsdispasmimetype.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the 1 ctype and possibly 2 filetype parameters...
CVE-2009-1149
CRLF injection vulnerability in bsdispasmimetype.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the 1 ctype and possibly 2 filetype parameters...
CVE-2009-1149
CRLF injection vulnerability in bsdispasmimetype.php in the BLOB streaming feature in phpMyAdmin before 3.1.3.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the 1 ctype and possibly 2 filetype parameters...
phpMyAdmin BLOB Streaming Multiple Input Validation Vulnerabilities
phpMyAdmin is prone to multiple input-validation vulnerabilities, including an HTTP response-splitting vulnerability and a local file-include vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
CVE-2009-0868
CRLF injection vulnerability in the WebLink template in Fujitsu Jasmine2000 Enterprise Edition allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
CVE-2009-0868
CRLF injection vulnerability in the WebLink template in Fujitsu Jasmine2000 Enterprise Edition allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
APC PowerChute Network Shutdown - HTTP Response Splitting Cross-Site Scripting
APC PowerChute Network Shutdown - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/33924/info APC PowerChute Network Shutdown is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize...
APC PowerChute Network Shutdown - HTTP Response Splitting / Cross-Site Scripting
source: https://www.securityfocus.com/bid/33924/info APC PowerChute Network Shutdown is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. Relay: HTTP response splitting, SQL injection, directory traversal...
Crlf injection
CRLF injection vulnerability in SocialEngine SE 2.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the PHPSESSID cookie...
CVE-2008-6121
CRLF injection vulnerability in SocialEngine SE 2.7 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the PHPSESSID cookie...
CVE-2008-6121
CVE-2008-6121 describes a CRLF injection vulnerability in SocialEngine versions 2.7 and earlier. The issue allows remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting via the PHPSESSID cookie. Affected software: SocialEngine 2.7 and earlier. Underlying cause: CRLF...