VYPR
Unrated severityNVD Advisory· Published Jun 21, 2006· Updated Jun 16, 2026

CVE-2006-3105

CVE-2006-3105

Description

CRLF injection vulnerability in Bitweaver 1.3 allows remote attackers to conduct HTTP response splitting attacks by via CRLF sequences in multiple unspecified parameters that are injected into HTTP headers, as demonstrated by the BWSESSION parameter in index.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:bitweaver:bitweaver:1.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:bitweaver:bitweaver:1.3:*:*:*:*:*:*:*
    • (no CPE)range: <=1.3

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.