CRLF injection vulnerability in login.php in WebCalendar allows remote attackers to inject CRLF sequences via the return_path parameter and perform HTTP Response Splitting attacks to modify expected HTML content from the server.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-1507
Mitre link : CVE-2004-1507
CVE.ORG link : CVE-2004-1507
JSON object : View
Products Affected
webcalendar
- webcalendar
CWE