RSS   Vulnerabilities for 'Mimemail'   RSS

2012-10-31
 
CVE-2012-4495

 

 
The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.

 


Copyright 2024, cxsecurity.com

 

Back to Top