Open redirect

A vulnerability was found in phpipam 1.5.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Header Handler. The manipulation of the argument X-Forwarded-Host leads to open redirect. The attack may be launched remotely. The exploit has been...

CVE-2023-4965 phpipam Header redirect

A vulnerability was found in phpipam 1.5.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Header Handler. The manipulation of the argument X-Forwarded-Host leads to open redirect. The attack may be launched remotely. The exploit has been...

CVE-2023-4965 phpipam Header redirect

A vulnerability was found in phpipam 1.5.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Header Handler. The manipulation of the argument X-Forwarded-Host leads to open redirect. The attack may be launched remotely. The exploit has been...

PT-2023-31278 · Phpipam · Phpipam

Name of the Vulnerable Software and Affected Versions: phpipam version 1.5.1 Description: A vulnerability was found in the component Header Handler of phpipam. The manipulation of the argument X-Forwarded-Host leads to open redirect. This issue can be exploited remotely. Recommendations: For...

The vulnerability of the Range Header Handler component in the Apache Traffic Server web server, which exists due to insufficient validation of input data, allows attackers to trigger service interruptions.

The vulnerability of the Range Header Handler component in the Apache Traffic Server web server exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

PT-2023-4530 · Apache · Apache Traffic Server

Name of the Vulnerable Software and Affected Versions: Apache Traffic Server versions through 9.2.1 Description: The issue is caused by improper input validation in the Range Header Handler component of the Apache Traffic Server. This can be exploited by a remote attacker to cause a denial of...

GHSA-8Q38-W56M-QQ2C Header injection in TurboGears

A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...

CVE-2019-25101

A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...

CVE-2019-25101

A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...

Design/Logic Flaw

A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...

CVE-2019-25101 OnShift TurboGears HTTP Header controllers.py response splitting

A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to http response splitting. It is possible to initiate the attack remotely...

CVE-2019-25101

OnShift TurboGears 1.0.11.10 is affected by a critical issue in the HTTP Header Handler (tur bogears/controllers.py) that enables HTTP response splitting. The vulnerability is exploitable remotely and is addressed by upgrading to version 1.0.11.11. The patch is identified as f68bbaba47f4474e1da55...

TurboGears 注入漏洞

TurboGears is an open source web development framework from OnShift. TurboGears version 1.0.11.10 suffers from an injection vulnerability that stems from a problem in the unknown section of the file turbogears/controllers.py in the component HTTP Header Handler, which can lead to a split http...

PT-2023-11359 · Unknown · Onshift Turbogears

Name of the Vulnerable Software and Affected Versions: OnShift TurboGears version 1.0.11.10 Description: A critical vulnerability has been found in OnShift TurboGears, affecting an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The manipulation leads to...

PT-2022-25520 · Codeboxr · Codeboxr Cbx User Online & Last Login Plugin

Name of the Vulnerable Software and Affected Versions: codeboxr CBX User Online & Last Login Plugin affected versions not specified Description: A vulnerability was found in the codeboxr CBX User Online & Last Login Plugin, affecting the HTTP Header Handler component. The manipulation of the...

PT-2022-25493 · WordPress · Iridium Intelligence Bad Ip Wp Plugin

Name of the Vulnerable Software and Affected Versions: Iridium Intelligence bad ip WP Plugin affected versions not specified Description: A vulnerability was found in the HTTP Header Handler component of the Iridium Intelligence bad ip WP Plugin. The manipulation of the X-Forwarded-For argument...

PT-2022-25528 · Unknown · Yellow Tree Geolocation Ip Detection Plugin

Name of the Vulnerable Software and Affected Versions: Yellow Tree Geolocation IP Detection Plugin affected versions not specified Description: A vulnerability was found in the Yellow Tree Geolocation IP Detection Plugin, classified as problematic. It affects an unknown function of the component...

PT-2022-25537 · WordPress · Ip Location Block Plugin

Name of the Vulnerable Software and Affected Versions: IP Location Block Plugin affected versions not specified Description: A vulnerability was found in the IP Location Block Plugin, affecting an unknown functionality of the component HTTP Header Handler. The manipulation of the X-Forwarded-For...

PT-2022-25549 · WordPress · Getseofix Show Visitor Ip Address Widget/Shortcode Plugin

Name of the Vulnerable Software and Affected Versions: getseofix Show Visitor IP Address Widget and Shortcode Plugin affected versions not specified Description: A problematic vulnerability was found in the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to...

PT-2022-25502 · Unknown · Show Ip Address Plugin

Name of the Vulnerable Software and Affected Versions: Show IP Address Plugin affected versions not specified Description: A vulnerability was found in the Show IP Address Plugin, affecting the HTTP Header Handler component. The manipulation of the X-Forwarded-For argument leads to improper outpu...