CRLF injection vulnerability in Drupal 4.5.x prior to 4.5.8 and 4.6.x prior to 4.5.8 allows remote malicious users to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal drupal 4.5.3 |
||
drupal drupal 4.6.0 |
||
drupal drupal 4.6.1 |
||
drupal drupal 4.5.0 |
||
drupal drupal 4.5.1 |
||
drupal drupal 4.5.2 |