When a call-site passes a subject for an email that contains line-breaks in Apache Commons Email 1.0 up to and including 1.4, the caller can add arbitrary SMTP headers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache commons email 1.3.3 |
||
apache commons email 1.2 |
||
apache commons email 1.4 |
||
apache commons email 1.3.2 |
||
apache commons email 1.0 |
||
apache commons email 1.3.1 |
||
apache commons email 1.3 |
||
apache commons email 1.1 |