Description

CRLF injection vulnerability in Squid before 3.1.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted header in a response.

Remediation

References

CVE-2015-0881

Related Vulnerabilities

MODX CVE-2017-7323 Vulnerability (CVE-2017-7323)

WordPress Plugin Nifty Newsletters (Formerly Sola Newsletters) Cross-Site Request Forgery (4.0.23)

WordPress Plugin Newsletter-Send awesome emails from WordPress Cross-Site Scripting (6.7.6)

WordPress 4.4.x Denial of Service Vulnerability (4.4 - 4.4.14)

Zikula Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2010-1724)

Severity

Medium

Classification

CVE-2015-0881

Tags

Missing Update Known Vulnerabilities