Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
matt wright formmail vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1771
Matt Wright FormMail 1.9 and previous versions allows remote malicious users to send spam or anonymous e-mail by injecting a newline character followed by CC:, BCC:, or additional TO: fields in the email and realname CGI variables.
Matt Wright Formmail 1.3
Matt Wright Formmail 1.4
Matt Wright Formmail 1.0
Matt Wright Formmail 1.7
Matt Wright Formmail 1.8
Matt Wright Formmail 1.1
Matt Wright Formmail 1.2
Matt Wright Formmail 1.9
Matt Wright Formmail 1.5
Matt Wright Formmail 1.6
NA
CVE-2002-2109
Matt Wright FormMail 1.9 and previous versions allows remote malicious users to bypass the HTTP_REFERER check and conduct unauthorized activities via (1) a blank referer, (2) a spoofed referer with a trusted domain/URL after the beginning of the referer, or (3) a spoofed referer ...
Matt Wright Formmail 1.3
Matt Wright Formmail 1.4
Matt Wright Formmail 1.5
Matt Wright Formmail 1.6
Matt Wright Formmail 1.1
Matt Wright Formmail 1.8
Matt Wright Formmail 1.0
Matt Wright Formmail 1.2
Matt Wright Formmail 1.7
Matt Wright Formmail 1.9
NA
CVE-1999-0172
FormMail CGI program allows remote execution of commands.
Matt Wright Formmail
NA
CVE-2009-1776
Multiple cross-site scripting (XSS) vulnerabilities in FormMail.pl in Matt Wright FormMail 1.92, and possibly earlier, allow remote malicious users to inject arbitrary web script or HTML via javascript: URIs in the (1) request and (2) return_link_url parameters.
Matt Wright Formmail
1 EDB exploit
NA
CVE-1999-0173
FormMail CGI program can be used by web servers other than the host server that the program resides on.
Matt Wright Formmail
1 EDB exploit
NA
CVE-2001-0357
FormMail.pl in FormMail 1.6 and previous versions allows a remote malicious user to send anonymous email (spam) by modifying the recipient and message parameters.
Matt Wright Formmail
NA
CVE-2009-1777
CRLF injection vulnerability in FormMail.pl in Matt Wright FormMail 1.92, and possibly earlier, allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the redirect parameter.
Matt Wright Formmail 1.92
1 EDB exploit
NA
CVE-2000-0411
Matt Wright's FormMail CGI script allows remote malicious users to obtain environmental variables via the env_report parameter.
Matt Wright Formmail 1.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started