Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23148
HistoryApr 10, 2020 - 12:17 a.m.

CRLF Injection

2020-04-1000:17:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15

0.02 Low

EPSS

Percentile

89.0%

JSON

php is vulnerable to CRLF Injection. A flaw was found in the PHP ‘ftp’ extension. If a PHP script used this extension to provide access to a private FTP server, and passed untrusted script input directly to any function provided by this extension, a remote attacker would be able to send arbitrary FTP commands to the server.

References

Related

openvas 17
ubuntucve 1
cve 1
prion 1
nvd 1
debian 2
securityvulns 1
cvelist 1
nessus 23
redhat 5
osv 1
centos 4
oraclelinux 3
fedora 2
ubuntu 1
f5 2
suse 1
gentoo 1
openvas
openvas
Debian: Security Advisory (DSA-1296-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1296-1 (php4)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1295-1)
2008-01-17 00:00:00
ubuntucve
ubuntucve
CVE-2007-2509
2007-05-09 00:00:00
cve
cve
CVE-2007-2509
2007-05-09 00:19:00
prion
prion
Crlf injection
2007-05-09 00:19:00
nvd
nvd
CVE-2007-2509
2007-05-09 00:19:00
debian
debian
[SECURITY] [DSA 1296-1] New php4 packages fix privilege escalation
2007-05-21 17:42:19
[SECURITY] [DSA 1295-1] New php5 packages fix several vulnerabilities
2007-05-19 10:39:36
securityvulns
securityvulns
PHP FTP commans injection
2007-03-24 00:00:00
cvelist
cvelist
CVE-2007-2509
2007-05-09 00:00:00
nessus
nessus
Debian DSA-1296-1 : php4 - missing input sanitising
2007-05-25 00:00:00
RHEL 4 : php (RHSA-2007:0349)
2007-05-10 00:00:00
Debian DSA-1295-1 : php5 - several vulnerabilities
2007-05-25 00:00:00
redhat
redhat
(RHSA-2007:0349) Important: php security update
2007-05-09 00:00:00
(RHSA-2007:0348) Important: php security update
2007-05-08 00:00:00
(RHSA-2007:0355) Important: php security update
2007-05-10 00:00:00
osv
osv
php5
2007-05-19 00:00:00
centos
centos
php security update
2007-05-09 15:32:48
php security update
2007-05-10 14:34:11
php security update
2007-10-24 03:08:58
oraclelinux
oraclelinux
Important: php security update
2007-05-09 00:00:00
Moderate: php security update
2007-09-26 00:00:00
Important: php security update
2007-06-26 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: php-5.1.6-3.6.fc6
2007-05-14 17:11:53
[SECURITY] Fedora Core 5 Update: php-5.1.6-1.6
2007-05-24 05:24:12
ubuntu
ubuntu
PHP vulnerabilities
2007-05-22 00:00:00
f5
f5
K7859 : Multiple PHP vulnerabilities
2013-03-19 00:00:00
SOL7859 - Multiple PHP vulnerabilities
2007-09-16 00:00:00
suse
suse
remote denial of service in php4,php5
2007-07-12 16:26:43
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-05-26 00:00:00

0.02 Low

EPSS

Percentile

89.0%

JSON
Related for VERACODE:23148
openvas17ubuntucve1cve1prion1nvd1debian2securityvulns1cvelist1nessus23redhat5osv1centos4oraclelinux3fedora2ubuntu1f52suse1gentoo1