CVE-2013-2652

Published: Nov 2, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

CRLF injection vulnerability in help/help_language.php in WebCollab 3.30 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the item parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

55295

third-party-advisory

x_refsource_SECUNIA

http://packetstormsecurity.com/files/123771/WebCollab-3.30-HTTP-Response-Splitting.html

x_refsource_MISC

20131024 [ISecAuditors Security Advisories] HTTP Response Splitting Vulnerability in WebCollab <= v3.30

mailing-list

x_refsource_BUGTRAQ

98768

vdb-entry

x_refsource_OSVDB

webcollab-cve20132652-response-splitting(88177)

vdb-entry

x_refsource_XF

63247

vdb-entry

x_refsource_BID

55235

third-party-advisory

x_refsource_SECUNIA

[Webcollab-announce] 20131018 Webcollab 3.31 Released

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-2652

Description

Affected Products

References