Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crlf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4401
Multiple CRLF injection vulnerabilities in the Advanced mIRC Integration Plugin and possibly other unspecified scripts in mIRC allow user-assisted remote malicious users to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.
Mirc Advanced Integration Plugin
6.1
CVSSv3
CVE-2015-9097
The mail gem prior to 2.5.5 for Ruby (aka A Really Ruby Mail Library) is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
Mail Project Mail
NA
CVE-2006-1282
CRLF injection vulnerability in inc/function.php in MyBulletinBoard (MyBB) 1.04 allows remote malicious users to conduct cross-site scripting (XSS), poison caches, or hijack pages via CRLF (%0A%0D) sequences in the Referrer HTTP header field, possibly when redirecting to other we...
Mybulletinboard Mybulletinboard 1.0.2
Mybulletinboard Mybulletinboard 1.0.3
Mybulletinboard Mybulletinboard Rc4
Mybulletinboard Mybulletinboard 1.0.4
Mybulletinboard Mybulletinboard 1.0 Final
Mybulletinboard Mybulletinboard 1.0 Pr2
Mybulletinboard Mybulletinboard Rc1
Mybulletinboard Mybulletinboard 1.0.1
Mybulletinboard Mybulletinboard Rc2
Mybulletinboard Mybulletinboard Rc3
NA
CVE-2007-3208
CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 allows remote malicious users to obtain administrative access via requests to (1) register.pl or (2) profile.pl that write CRLF sequences to a .vars file. NOTE: this can be leveraged to execute arbitrary code.
Yabb Yabb 2.1
NA
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote malicious users to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGE_EXPORT_DIRECTORY array in a PE file, which could complicate...
Fransois Gannier Fileinfo Plugin 2.09
Ghisler Total Commander
NA
CVE-2006-6965
CRLF injection vulnerability in lib/exe/fetch.php in DokuWiki 2006-03-09e, and possibly earlier, allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the media parameter. NOTE: this issue can be leveraged...
Andreas Gohr Dokuwiki Release 2006-03-09
Andreas Gohr Dokuwiki Release 2006-03-09e
3.7
CVSSv3
CVE-2016-1899
CRLF injection vulnerability in the ui-blob handler in CGit prior to 0.12 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks or cross-site scripting (XSS) attacks via CRLF sequences in the mimetype parameter, as demonstrated...
Fedoraproject Fedora 22
Cgit Project Cgit
NA
CVE-2006-4505
CRLF injection vulnerability in links.php in NX5Linx 1.0 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a CRLF sequence in the url parameter.
Nx5 Nx5linx 1.0
1 EDB exploit
NA
CVE-2005-4712
CRLF injection vulnerability in process_signup.php in PHP Handicapper allows remote malicious users to inject arbitrary HTTP headers via CRLF sequences in the login parameter. NOTE: the vendor has disputed CVE-2005-3497, and it is possible that the dispute was intended to include...
Php Handicapper Php Handicapper
NA
CVE-2007-2404
CRLF injection vulnerability in CFNetwork on Apple Mac OS X 10.3.9 and 10.4.10 prior to 20070731 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in an unspecified context. NOTE: this can be leveraged fo...
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.6
Apple Mac Os X 10.4.2
Apple Mac Os X 10.4.3
Apple Mac Os X Server 10.3.1
Apple Mac Os X Server 10.3.2
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4
Apple Mac Os X Server 10.4.6
Apple Mac Os X Server 10.4.7
Apple Mac Os X 10.3.1
Apple Mac Os X 10.3.2
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.7
Apple Mac Os X Server 10.3.5
Apple Mac Os X Server 10.3.6
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.3
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »