Description
CRLF injection vulnerability in the send email functionality in dotCMS before 3.3.2 allows remote attackers to inject arbitrary email headers via CRLF sequences in the subject.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)
WordPress Plugin BetterOptin Cross-Site Scripting (1.2.4)
WordPress Plugin WP Smart Import: Import any XML File to WordPress Cross-Site Scripting (1.0.2)
WordPress Plugin WP Dev Powers:ACF Color Coded Field Types Security Bypass (1.0)