CVE-2008-2497

CRLF injection vulnerability in Mambo before 4.6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mambo-foundation:mambo:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-05-28 15:32

Updated : 2024-02-04 17:33


NVD link : CVE-2008-2497

Mitre link : CVE-2008-2497

CVE.ORG link : CVE-2008-2497


JSON object : View

Products Affected

mambo-foundation

  • mambo
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')