CVE-2007-2550
CVE-2007-2550 affects CubeCart 3.0.15 (Devellion) and involves multiple CRLF injection vulnerabilities in cookies named with a prefix of "ccSID", enabling remote attackers to inject arbitrary HTTP headers and perform HTTP response splitting against cart.php or index.php. The vulnerability is due ...