RSS   Vulnerabilities for 'Dotdeb php'   RSS

2007-03-02
 
CVE-2006-7087

CWE-Other
 

 
CRLF injection vulnerability in the mail function in Dotdeb PHP before 5.2.0 Rev 3 allows remote attackers to bypass the protection scheme and inject arbitrary email headers via CRLF sequences in the query string, which is processed via the PHP_SELF variable.

 


Copyright 2024, cxsecurity.com

 

Back to Top