CVE-2005-3883

2005-11-29T06:03:00
ID CVE-2005-3883
Type cve
Reporter NVD
Modified 2017-10-10T21:30:29

Description

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.