cve/CVE-2007-2550.md at 71b0cee710ed54e668d68c977dc8a01eece35241

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Multiple CRLF injection vulnerabilities in Devellion CubeCart 3.0.15 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a cookie name beginning with "ccSID" to (1) cart.php or (2) index.php.

POC

Reference

http://securityreason.com/securityalert/2678

Github

No PoCs found on GitHub currently.

726 B Raw Blame History

CVE-2007-2550

Description

POC

Reference

Github

726 B

Raw Blame History