CRLF Injection Vulnerability in Phorum 5.0.14a's search.php Allows HTTP Response Splitting Attacks

CRLF Injection Vulnerability in Phorum 5.0.14a's search.php Allows HTTP Response Splitting Attacks

CVE-2005-0843 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

CRLF injection vulnerability in search.php in Phorum 5.0.14a allows remote attackers to perform HTTP Response Splitting attacks via the body parameter, which is included in the resulting Location header.

Learn more about our Web Application Penetration Testing UK.