Description
CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2009-1993 Vulnerability (CVE-2009-1993)
WordPress Plugin Side Menu Lite-add sticky fixed buttons SQL Injection (2.2)
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2022-42128)
Contao Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-37626)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-3319)