• info
• discussion
• exploit
• solution
• references

Openads Max Media Manager CK.PHP HTTP Response Splitting Vulnerability

Openads is prone to an HTTP-response-splitting vulnerability because it fails to sanitize user-supplied input.

A remote attacker may exploit this vulnerability to influence or misrepresent how web content is served, cached, or interpreted. This could aid in various attacks that attempt to entice client users into a false sense of trust.

Versions prior to 2.3.31-alpha-pr3 are affected by this issue.