Vulnerability Details CVE-2004-1584
CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the text parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.16
EPSS Ranking 94.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=109716327724041&w=2
- http://secunia.com/advisories/12773
- http://wordpress.org/development/2004/10/wp-121/
- http://www.gentoo.org/security/en/glsa/glsa-200410-12.xml
- http://www.securityfocus.com/bid/11348
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17649
- http://marc.info/?l=bugtraq&m=109716327724041&w=2
- http://secunia.com/advisories/12773
- http://wordpress.org/development/2004/10/wp-121/
- http://www.gentoo.org/security/en/glsa/glsa-200410-12.xml
- http://www.securityfocus.com/bid/11348
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17649