Description
split-logfile in Apache 1.3.20 allows remote attackers to overwrite arbitrary files that end in the .log extension via an HTTP request with a / (slash) in the Host: header.
Remediation
References
Related Vulnerabilities
PHP Improper Input Validation Vulnerability (CVE-2011-1470)
WordPress Plugin Event List SQL Injection (0.7.8)
WordPress Plugin Comment Extra Fields Multiple Cross-Site Scripting Vulnerabilities (1.7)
Microsoft SQL Server CVE-2023-38169 Vulnerability (CVE-2023-38169)
Drupal Deserialization of Untrusted Data Vulnerability (CVE-2019-6340)