CRLF injection vulnerability in Bitweaver 1.3 allows remote attackers to conduct HTTP response splitting attacks by via CRLF sequences in multiple unspecified parameters that are injected into HTTP headers, as demonstrated by the BWSESSION parameter in index.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-06-21T01:00:00
Updated: 2018-10-18T14:57:01
Reserved: 2006-06-20T00:00:00
Link: CVE-2006-3105
JSON object: View
NVD Information
Status : Modified
Published: 2006-06-21T01:02:00.000
Modified: 2018-10-18T16:45:49.327
Link: CVE-2006-3105
JSON object: View
Redhat Information
No data.
CWE