CRLF injection vulnerability in bs_disp_as_mime_type.php in the BLOB streaming feature in phpMyAdmin prior to 3.1.3.1 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the (1) c_type and possibly (2) file_type parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpmyadmin phpmyadmin 3.1.0 |
||
phpmyadmin phpmyadmin 3.1.1 |
||
phpmyadmin phpmyadmin 3.1.2 |
||
phpmyadmin phpmyadmin 3.1.3 |
||
phpmyadmin phpmyadmin 3.1.0.0 |
||
phpmyadmin phpmyadmin |