Vulnerability Details CVE-2016-2303
CRLF injection vulnerability in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.9%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2016-2303
-
cpe:2.3:a:ecava:integraxor:3.5.3900.10
-
cpe:2.3:a:ecava:integraxor:3.5.3900.5
-
cpe:2.3:a:ecava:integraxor:3.6.4000.0
-
cpe:2.3:a:ecava:integraxor:3.60.4061
-
cpe:2.3:a:ecava:integraxor:3.71
-
cpe:2.3:a:ecava:integraxor:3.71.4200
-
cpe:2.3:a:ecava:integraxor:3.72
-
cpe:2.3:a:ecava:integraxor:4.00
-
cpe:2.3:a:ecava:integraxor:4.1
-
cpe:2.3:a:ecava:integraxor:4.1.4340
-
cpe:2.3:a:ecava:integraxor:4.1.4360
-
cpe:2.3:a:ecava:integraxor:4.1.4369
-
cpe:2.3:a:ecava:integraxor:4.1.4380
-
cpe:2.3:a:ecava:integraxor:4.1.4390
-
cpe:2.3:a:ecava:integraxor:4.1.4393
-
cpe:2.3:a:ecava:integraxor:4.1.4450
-
cpe:2.3:a:ecava:integraxor:4.2.4502