Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2007-4398

Multiple CRLF injection vulnerabilities in the (1) now-playing.rb and (2) xmms.pl 1.1 scripts for WeeChat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file.

  • Published: Aug 18, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-4398
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
irssi / irssi - 0.8.10rc5.x