Siteman · Siteman · CVE-2005-0305
**Name of the Vulnerable Software and Affected Versions**
Siteman versions 1.1.10 and earlier
**Description**
The issue allows remote attackers to inject CRLF characters, enabling them to add arbitrary users and gain privileges. This is achieved via the `line` parameter in a "docreate" operation.
**Recommendations**
For Siteman versions 1.1.10 and earlier, update to a version later than 1.1.10 to resolve the issue. As a temporary workaround, consider restricting access to the "docreate" operation and the `line` parameter in the users.php file to minimize the risk of exploitation.