Argument injection vulnerability in the sendmail implementation of the Mail::Send method (Mail/sendmail.php) in the Mail package 1.1.14 for PEAR allows remote malicious users to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pear pear 1.1.14 |