Security Advisory

CVE-2004-1620

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-02-20 05:00:00

Last updated 2024-08-08 01:00:37

Assigner mitre

State PUBLISHED

Description

CRLF injection vulnerability in Serendipity before 0.7rc1 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the url parameter in (1) index.php and (2) exit.php, or (3) the HTTP Referer field in comment.php.

← Browse all CVEs View on cve.org ↗