Multiple HTTP response splitting vulnerabilities in PHP 5.1.1 allow remote malicious users to inject arbitrary HTTP headers via a crafted Set-Cookie header, related to the (1) session extension (aka ext/session) and the (2) header function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php 5.0 |
||
php php 5.0.3 |
||
php php 5.0.4 |
||
php php 5.0.0 |
||
php php 5.0.1 |
||
php php 5.0.2 |
||
php php 5.1.0 |
||
php php 5.1.1 |
||
php php 5.0.5 |