Description

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.

Remediation

References

CVE-2004-1584

Related Vulnerabilities

YOURLS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-8488)

MySQL CVE-2014-2442 Vulnerability (CVE-2014-2442)

Oracle Application Server CVE-2006-5364 Vulnerability (CVE-2006-5364)

Python Use After Free Vulnerability (CVE-2018-1000030)

Oracle JRE CVE-2018-2811 Vulnerability (CVE-2018-2811)

Severity

Medium

Classification

CVE-2004-1584

Tags

Missing Update Known Vulnerabilities