Unfixed HTTP Response Splitting vulnerability at wiki.uiah.fi

2008-12-07T00:00:00
ID XSSED:45155
Type xssed
Reporter xylitol
Modified 2008-07-11T00:00:00

Description

Security researcher xylitol, has submitted on 12/07/2008 a HTTP Response Splitting vulnerability affecting wiki.uiah.fi, which at the time of submission ranked 130465 on the web according to Alexa.
We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currently unfixed.
If you believe that this security issue has been corrected, please send us an e-mail.

Vulnerable URL: http://wiki.uiah.fi/futurehome/lib/exe/fetch.php?id=julkaisut%3Ajulkaisut&media=http://%0D%0A%0D%0A%3Chtml%3E%3Cfont%20color=red%3Eyou%20are%20xssed%3C/font%3E%3C/html%3E