CVE-2006-3171 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-3171

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

CRLF injection vulnerability in CS-Forum before 0.82 allows remote attackers to inject arbitrary email headers via a newline character in the email parameter to ajouter.php.

Affected Software

Name	Vendor	Start Version	End Version
Cs-forum	Comscripts	*	0.81 (including)

References

http://secunia.com/advisories/20534
http://www.acid-root.new.fr/advisories/csforum081.txt
http://www.comscripts.com/scripts/php.cs-forum.643.html
http://www.osvdb.org/26384
http://www.vupen.com/english/advisories/2006/2314
https://exchange.xforce.ibmcloud.com/vulnerabilities/27177
http://secunia.com/advisories/20534
http://www.acid-root.new.fr/advisories/csforum081.txt
http://www.comscripts.com/scripts/php.cs-forum.643.html
http://www.osvdb.org/26384
http://www.vupen.com/english/advisories/2006/2314
https://exchange.xforce.ibmcloud.com/vulnerabilities/27177