Description
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when user-supplied headers are sent, the insufficient validation of the end-of-line characters may prevent certain headers from being sent or lead to certain headers be misinterpreted.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slider by 10Web-Responsive Image Slider Cross-Site Request Forgery (1.2.22)
Drupal Core 7.x Cross-Site Request Forgery (7.0 - 7.71)
WordPress Plugin Quick Chat Cross-Site Scripting (4.14)
WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1)
Oracle HTTP Server Out-of-bounds Read Vulnerability (CVE-2018-16890)