Описание
Webbler CMS before 3.1.6 does not properly restrict use of "mail a friend" forms, which allows remote attackers to send arbitrary amounts of forged e-mail. NOTE: this could be leveraged for spam or phishing attacks.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 3.1.4 (включая)
cpe:2.3:a:tincan:webbler_cms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 57%
0.00351
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Webbler CMS before 3.1.6 does not properly restrict use of "mail a friend" forms, which allows remote attackers to send arbitrary amounts of forged e-mail. NOTE: this could be leveraged for spam or phishing attacks.
EPSS
Процентиль: 57%
0.00351
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other