Lucene search
HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-1584
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.045
Percentile
92.6%
CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.
Affected configurations
Node
wordpresswordpressMatch1.2
Related
gentoo
gentoo
WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
cve
cve
CVE-2004-1584
2005-02-20 05:00:00
patchstack
patchstack
WordPress <=1.2 - CRLF (Carriage Return Line Feed) injection
2005-02-20 00:00:00
cvelist
cvelist
CVE-2004-1584
2005-02-20 05:00:00
nessus
nessus
WordPress 'wp-login.php' HTTP Response Splitting
2004-10-08 00:00:00
GLSA-200410-12 : WordPress: HTTP response splitting and XSS vulnerabilities
2004-10-14 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200410-12 (wordpress)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2004-1584
2005-02-20 05:00:00
wpvulndb
wpvulndb
WordPress 1.2 - HTTP Response Splitting
2004-12-31 00:00:00
exploitdb
exploitdb
WordPress Core 1.2 - HTTP Splitting
2004-10-10 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.6
Confidence
Low
EPSS
0.045
Percentile
92.6%
Related for NVD:CVE-2004-1584