CRLF injection vulnerability in layers_toggle.php in WebCalendar 1.0.1 might allow remote malicious users to modify HTTP headers and conduct HTTP response splitting attacks via the ret parameter, which is used to redirect URL requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
webcalendar webcalendar 1.0.1 |