Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crlf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6699
Multiple CRLF injection vulnerabilities in Oracle Portal 9.0.2 and possibly other versions allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the enc parameter to (1) calendarDialog.jsp or (2) fred.jsp. ...
Oracle Application Server Portal 9.0.2
NA
CVE-2006-5566
CRLF injection vulnerability in premium/index.php in Shop-Script allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the (1) links_exchange, (2) news, (3) search_with_change_category_ability, (4) logging...
Webasyst Llc Shop-script
1 EDB exploit
NA
CVE-2006-5262
CRLF injection vulnerability in lib/session.php in Hastymail 1.5 and previous versions prior to 20061008 allows remote authenticated users to send arbitrary IMAP commands via a CRLF sequence in a mailbox name. NOTE: the attack crosses privilege boundaries if the IMAP server confi...
Hastymail Hastymail
Hastymail Hastymail 1.0.1
Hastymail Hastymail 1.0.2
Hastymail Hastymail 1.1
Hastymail Hastymail 1.2
1 EDB exploit
NA
CVE-2007-2047
CRLF injection vulnerability in www/delivery/ck.php in Openads 2.3 (aka Max Media Manager, MMM) prior to 0.3.31-alpha-pr3 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the destination parameter. NO...
Openads Openads 2.3.30
5.4
CVSSv3
CVE-2021-4097
phpservermon is vulnerable to Improper Neutralization of CRLF Sequences
Phpservermonitor Php Server Monitor
NA
CVE-2007-4190
CRLF injection vulnerability in Joomla! prior to 1.0.13 (aka Sunglow) allows remote malicious users to inject arbitrary HTTP headers and probably conduct HTTP response splitting attacks via CRLF sequences in the url parameter. NOTE: this can be leveraged for cross-site scripting ...
Joomla Joomla\\!
NA
CVE-2007-0047
CRLF injection vulnerability in Adobe Acrobat Reader Plugin prior to 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in t...
Adobe Acrobat Reader
6.1
CVSSv3
CVE-2019-11236
In the urllib3 library up to and including 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter.
Python Urllib3
1 Github repository
NA
CVE-2014-1693
Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP R15B03 allow context-dependent malicious users to inject arbitrary FTP commands via CRLF sequences in the (1) user, (2) account, (3) cd, (4) ls, (5) nlist, (6) rename, (7) delete, (8) mkdir, (9) rmdir, (10) r...
Erlang Erlang\\/otp R15b03
NA
CVE-2006-6374
Multiple CRLF injection vulnerabilities in PhpMyAdmin 2.7.0-pl2 allow remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a phpMyAdmin cookie in (1) css/phpmyadmin.css.php, (2) db_create.php, (3) index.php, (4)...
Phpmyadmin Phpmyadmin 2.7.0 Pl2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »