Description

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.

Remediation

References

CVE-2004-1584

Related Vulnerabilities

WordPress Plugin freetobook widget Unspecified Vulnerability (1.0.5)

WordPress Plugin Passster-Password Protection Cross-Site Scripting (3.5.5.7)

MongoDb Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4650)

WordPress Plugin WP Import Export Information Disclosure (3.9.15)

Envoy Proxy Excessive Iteration Vulnerability (CVE-2021-32778)

Severity

Medium

Classification

CVE-2004-1584

Tags

Missing Update Known Vulnerabilities