Header Injection

2017-07-3020:57:02

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.001 Low

EPSS

Percentile

50.8%

anchorcms/anchor-cms is vulnerable to header injection attacks. Using CLRF, attackers can inject headers into anchors/models/comment.php.

CPENameOperatorVersion
anchorcms/anchor-cmsle0.9.3.1-a

CPE	Name	Operator	Version
	anchorcms/anchor-cms	le	0.9.3.1-a

References

packetstormsecurity.com/files/129042/Anchor-CMS-0.9.2-Header-Injection.html

0.001 Low

EPSS

Percentile

50.8%

Related for VERACODE:4818