CRLF injection vulnerability in the send email functionality in dotCMS prior to 3.3.2 allows remote malicious users to inject arbitrary email headers via CRLF sequences in the subject.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dotcms dotcms |