18 Jan 2018
CVE-2014-2017 - CVE Vulnerability
CRLF injection vulnerability in OXID eShop Professional Edition before 4.7.11 and 4.8.x before 4.8.4, Enterprise Edition before 5.0.11 and 5.1.x before 5.1.4, and Community Edition before 4.7.11 and 4.8.x before 4.8.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. (CVSS:0.0) (Last Update:2018-01-18)
Vulnerability Details : CRLF injection vulnerability in OXID eShop Professional Edition before 4.7.11 and 4.8.x before 4.8.4, Enterprise Edition before 5.0.11 and 5.1.x before 5.1.4, and Community Edition before 4.7.11 and 4.8.x before 4.8.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors. Publish Date : 2018-01-18 Last Update Date : 2018-01-18 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2014-2017
- References For CVE-2014-2017
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2014-2017There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |