Vulnerabilities > Devellion > Cubecart > 3.0.15
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-05-09 | CVE-2007-2550 | HTTP Response Splitting vulnerability in Devellion Cubecart 3.0.15 Multiple CRLF injection vulnerabilities in Devellion CubeCart 3.0.15 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in a cookie name beginning with "ccSID" to (1) cart.php or (2) index.php. | 5.0 |