exploitDog

GHSA-9gxq-rfrc-79c7

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

Ссылки

EPSS

Процентиль: 62%

0.00425

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2016-2303

CVSS3: 5.3

nvd

почти 10 лет назад

CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

EPSS

Процентиль: 62%

0.00425

Низкий

5.3 Medium

CVSS3

CVE ID