High severity7.5NVD Advisory· Published Nov 17, 2017· Updated May 13, 2026
CVE-2017-1000247
CVE-2017-1000247
Description
British Columbia Institute of Technology CodeIgniter 3.1.3 is vulnerable to HTTP Header Injection in the set_status_header() common function under Apache resulting in HTTP Header Injection flaws.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
codeigniter4/frameworkPackagist | >= 3.1.3, < 3.1.4 | 3.1.4 |
Affected products
1- cpe:2.3:a:codeigniter:codeigniter:3.1.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- github.com/advisories/GHSA-j9f9-8j39-4g97ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2017-1000247ghsaADVISORY
- www.codeigniter.com/userguide3/changelog.htmlnvdVendor AdvisoryWEB
News mentions
0No linked articles in our index yet.