HTTP response splitting vulnerability in index.php in phpSysInfo 2.4 and previous versions, as used in phpgroupware 0.9.16 and previous versions, and egroupware prior to 1.0.0.009, allows remote malicious users to spoof web content and poison web caches via CRLF sequences in the charset parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpsysinfo phpsysinfo 2.3 |
||
phpsysinfo phpsysinfo 2.4 |
||
phpsysinfo phpsysinfo 2.0 |
||
phpsysinfo phpsysinfo 2.1 |