HTTP Header Injection

🗓️ 20 Nov 2017 00:42:42Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 11 Views

CodeIgniter framework vulnerable to HTTP header injection through set_status_header function

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2017-1000247	17 Nov 201704:29	–	nvd
OSV	CodeIgniter HTTP Header Injection	17 May 202200:18	–	osv
Prion	Design/Logic Flaw	17 Nov 201704:29	–	prion
Cvelist	CVE-2017-1000247	17 Nov 201704:00	–	cvelist
Github Security Blog	CodeIgniter HTTP Header Injection	17 May 202200:18	–	github
CVE	CVE-2017-1000247	17 Nov 201704:29	–	cve

Vulners

Node

-bcit-ci\/codeigniterRange≤3.1.3

-codeigniter\/frameworkRange≤3.1.3

Source	Link
github	www.github.com/bcit-ci/CodeIgniter/commit/df33ec2e45356895c5aec0a1ebfc325c2af4f74a
codeigniter	www.codeigniter.com/userguide3/changelog.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Nov 2017 00:42Current

7.7High risk

Vulners AI Score7.7

EPSS0.00084