CVE-2007-4612

CRLF injection vulnerability in contact.php in Moonware (aka Dale Mooney Gallery) allows remote attackers to add arbitrary mail headers via CRLF sequences in the subject parameter. NOTE: this can be leveraged for spam by adding To or Cc headers.
Configurations

Configuration 1

cpe:2.3:a:dale_mooney:contact_form:*:*:*:*:*:*:*:*

Information

Published : 2007-08-31 12:17

Updated : 2018-10-15 09:36


NVD link : CVE-2007-4612

Mitre link : CVE-2007-4612

Products Affected
No products.
CWE