Vulnerabilities > CVE-2005-4712 - Unspecified vulnerability in PHP Handicapper PHP Handicapper

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

php-handicapper

NVD

Published: 2005-12-31

Updated: 2024-11-21

Summary

CRLF injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the login parameter. NOTE: the vendor has disputed CVE-2005-3497, and it is possible that the dispute was intended to include this issue as well.

Vulnerable Configurations

Part	Description	Count
Application	Php_Handicapper PHP Handicapper PHP Handicapper *	1

References

http://www.zone-h.org/advisories/read/id=8360
http://www.zone-h.org/advisories/read/id=8360