Description

CRLF injection vulnerability in ownCloud Server before 4.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the url path parameter.

Remediation

References

CVE-2012-5057

Related Vulnerabilities

WordPress Plugin PDF & Print by BestWebSoft Cross-Site Scripting (2.0.2)

WordPress Plugin Shortcoder-Create Shortcodes for Anything Security Bypass (6.3)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20280)

Cherokee Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-20798)

Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-1856)

Severity

Medium

Classification

CVE-2012-5057

Tags

Missing Update Known Vulnerabilities