SecuritySpace - CVE-2007-4190

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2007-4190

Description: CRLF injection vulnerability in Joomla! before 1.0.13 (aka Sunglow) allows remote attackers to inject arbitrary HTTP headers and probably conduct HTTP response splitting attacks via CRLF sequences in the url parameter. NOTE: this can be leveraged for cross-site scripting (XSS) attacks. NOTE: some of these details are obtained from third party information.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2007-4190
http://www.joomla.org/content/view/3677/1/
http://osvdb.org/38739
http://secunia.com/advisories/26239
http://www.vupen.com/english/advisories/2007/2719

CVE ID:	CVE-2007-4190
Description:	CRLF injection vulnerability in Joomla! before 1.0.13 (aka Sunglow) allows remote attackers to inject arbitrary HTTP headers and probably conduct HTTP response splitting attacks via CRLF sequences in the url parameter. NOTE: this can be leveraged for cross-site scripting (XSS) attacks. NOTE: some of these details are obtained from third party information.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4190 http://www.joomla.org/content/view/3677/1/ http://osvdb.org/38739 http://secunia.com/advisories/26239 http://www.vupen.com/english/advisories/2007/2719