Description
Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes hex-encoded newline or form-feed characters.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Insufficient Verification of Data Authenticity Vulnerability (CVE-2020-11985)
WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1)
Magento Inclusion of Functionality from Untrusted Control Sphere Vulnerability (CVE-2019-8154)
WordPress Plugin Store Locator Plus for WordPress Open Email Relay (4.2.25)