CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2005-11-29 11:03
Updated : 2024-02-28 10:42
NVD link : CVE-2005-3883
Mitre link : CVE-2005-3883
CVE.ORG link : CVE-2005-3883
JSON object : View
Products Affected
php
- php
CWE