Security Advisory

CVE-2023-53878

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-15 20:28:18

Last updated 2026-05-12 20:46:29

Assigner VulnCheck

State PUBLISHED

Description

Member Login Script 3.3 contains a client-side desynchronization vulnerability that allows attackers to manipulate HTTP request handling by exploiting Content-Length header parsing. Attackers can send crafted POST requests with smuggled secondary requests to potentially bypass server-side request processing controls.

← Browse all CVEs View on cve.org ↗