Description

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.

Remediation

References

CVE-2004-1584

Related Vulnerabilities

WordPress Plugin Yoast SEO Possible Remote Code Execution (9.1.0)

WordPress Plugin Cool Video Gallery Cross-Site Request Forgery (1.8)

MySQL CVE-2021-35640 Vulnerability (CVE-2021-35640)

WordPress Plugin Portfolio Gallery-Photo Gallery Unspecified Vulnerability (2.3.0)

PmWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2011-4453)

Severity

Medium

Classification

CVE-2004-1584

Tags

Missing Update Known Vulnerabilities