Описание
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 4.5.8-1 |
| devel | DNE | |
| edgy | released | 4.5.8-1 |
| feisty | ignored | end of life, was needed |
| gutsy | DNE | |
| hardy | DNE | |
| upstream | needs-triage |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 76%
0.01075
Низкий
5 Medium
CVSS2
Связанные уязвимости
nvd
больше 19 лет назад
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
debian
больше 19 лет назад
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x be ...
github
больше 3 лет назад
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
EPSS
Процентиль: 76%
0.01075
Низкий
5 Medium
CVSS2