Description
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Reset-Most Advanced WordPress Reset Tool Cross-Site Scripting (1.86)
XWiki Incomplete Cleanup Vulnerability (CVE-2023-36468)
Oracle Database Server CVE-2013-5853 Vulnerability (CVE-2013-5853)
WordPress Plugin MW Font Changer Cross-Site Scripting (4.2.5)
silverstripeCMS Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-9280)