Lucene search

MitreCVELIST:CVE-2005-3982

HistoryDec 04, 2005 - 11:00 a.m.

CVE-2005-3982

2005-12-0411:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.048

Percentile

92.8%

JSON

CRLF injection vulnerability in layers_toggle.php in WebCalendar 1.0.1 might allow remote attackers to modify HTTP headers and conduct HTTP response splitting attacks via the ret parameter, which is used to redirect URL requests.

References

secunia.com/advisories/17848

secunia.com/advisories/19240

vd.lwang.org/webcalendar_multiple_vulns.txt

www.debian.org/security/2006/dsa-1002

www.osvdb.org/21383

www.securityfocus.com/archive/1/418286/100/0/threaded

www.securityfocus.com/bid/15673

www.vupen.com/english/advisories/2005/2702