VYPR
Unrated severityNVD Advisory· Published Oct 27, 2006· Updated Jun 16, 2026

CVE-2006-5566

CVE-2006-5566

Description

CRLF injection vulnerability in premium/index.php in Shop-Script allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the (1) links_exchange, (2) news, (3) search_with_change_category_ability, (4) logging, (5) feedback, (6) show_price, (7) register, (8) answer, (9) productID, and (10) inside parameters.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:webasyst_llc:shop-script:*:*:free:*:*:*:*:*+ 1 more
    • cpe:2.3:a:webasyst_llc:shop-script:*:*:free:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.