Unfixed HTTP Response Splitting vulnerability at www.blogpeople.net

ID XSSED:27220
Type xssed
Reporter kusomiso.com
Modified 2007-04-12T00:00:00


Security researcher kusomiso.com, has submitted on 30/11/2007 a HTTP Response Splitting vulnerability affecting www.blogpeople.net, which at the time of submission ranked 9933 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 04/12/2007. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://www.blogpeople.net/cgi-bin/click.cgi?u=%0AContent-Type:%20text/html%0AContent-Length:16%0A%0Axssed.com%20....