8 matches found
EUVD-2004-1464
Malware in sbrugna...
EUVD-2014-9373
Malware in sbrugna...
CVE-2004-1470
CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server...
CVE-2004-1470
CRLF injection vulnerability in SnipSnap 0.5.2a, and other versions before 1.0b1, allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server...
ADVISORY: http response splitting in snipsnap
ADVISORY Author: Maestro me! Date: 14-SEP-04 Vendor: SnipSnap www.snipsnap.org Product: SnipSnap 0.5.2a Product description from vendor website: SnipSnap is a free and easy to install weblog and wiki tool written in Java. Problem: Http response splitting web cache poisoning, xss, yadayadayada -...
SnipSnap < 1.0b1 POST Request HTTP Response Splitting
Binary data 2289.prm...
SnipSnap 0.5.2 - HTTP Response Splitting
SnipSnap 0.5.2 - HTTP Response Splitting source: https://www.securityfocus.com/bid/11180/info SnipSnap is reported prone to an HTTP response splitting vulnerability. The issue exists in the 'referer' parameter. The issue presents itself due to a flaw in the application that allows an attacker to...
SnipSnap 0.5.2 - HTTP Response Splitting
source: https://www.securityfocus.com/bid/11180/info SnipSnap is reported prone to an HTTP response splitting vulnerability. The issue exists in the 'referer' parameter. The issue presents itself due to a flaw in the application that allows an attacker to manipulate how POST requests are handled...