Because of this vulnerability in wp-login.php, attackers can perform HTTP Response Splitting attacks to modify expected HTML content from the server via the "text" parameter.
Solution
Update the WordPress to the latest available version (at least 1.2.1).
Found a vulnerability that puts your sites at risk?