VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 29, 2005· Updated Apr 16, 2026

CVE-2005-2060

CVE-2005-2060

Description

Multiple HTTP Response Splitting vulnerabilities in (1) toggleshow.php, (2) togglecats.php, and (3) showprofile.php in Infopop UBB.Threads before 6.5.2 Beta allow remote attackers to spoof web content and poison web caches via CRLF ("%0d%0a") sequences in the Cat parameter.

Affected products

20
  • Ubbcentral/Ubb.threads20 versions
    cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:*+ 19 more
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.2.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ubbcentral:ubb.threads:6.5.1.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.