2 matches found
Crlf injection
CRLF injection vulnerability in admin/displayImage.php in Prestashop 1.4.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the name parameter...
CVE-2011-4545
The CVE refers to a CRLF injection in Prestashop 1.4.4.1, specifically in admin/displayImage.php, exploitable via the name parameter to inject arbitrary HTTP headers and conduct HTTP response splitting. The NVD entry lists a base score of 5.0 (Medium) with network attack vector, low complexity, n...