707 matches found
Shopify: HTTP-Response-Splitting on v.shopify.com
I discovered a HTTP-Response-Splitting issue on v.shopify.com Steps to reproduce: Call the following URL in any browser and catch the response e.g. with burp...
PT-2014-8628 · Citrix · Citrix Netscaler Application Delivery Controller +1
Name of the Vulnerable Software and Affected Versions: Citrix NetScaler Application Delivery Controller and NetScaler Gateway versions 10.5.50.10 through 10.5-52.10 Citrix NetScaler Application Delivery Controller and NetScaler Gateway versions 10.1.122.17 through 10.1-129.10 Citrix NetScaler...
HTTP Protocol header injection vulnerability-vulnerability warning-the black bar safety net
HTTP response header file contains unverified data will lead to cache-poisoning, cross-site scripting, cross-user defacement, page hijacking, cookie manipulation or open redirect. HTTP Protocol header injection vulnerability principles The following cases will appear in the HTTP Protocol header...
Mobile Mp3 Search Engine HTTP Response Splitting
-=--------------------ADVISORY-------------------=- Mobile Mp3 Search Engine 2.0 Author: Corrado Liotta Aka CorryL [email protected] -=-----------------------------------------------=- -=+ Application: Mobile Mp3 Search Engine -=+ Version: 2.0 -=+ Vendor's URL:...
Apache TomCat mod_jk < 1.2.27 Cross-user Information Disclosure
Binary data 4984.prm...
SnipSnap: HTTP response splitting
Background SnipSnap is a user friendly content management system with features such as wiki and weblog. Description SnipSnap contains various HTTP response splitting vulnerabilities that could potentially compromise the sites data. Some of these attacks include web cache poisoning, cross-user...
Vignette StoryServer Cross-user Session Information Disclosure
Binary data 1458.prm...