CVE-2006-1225

2006-03-14T14:06:00
ID CVE-2006-1225
Type cve
Reporter NVD
Modified 2017-07-19T21:30:24

Description

CRLF injection vulnerability in Drupal 4.5.x before 4.5.8 and 4.6.x before 4.5.8 allows remote attackers to inject headers of outgoing e-mail messages and use Drupal as a spam proxy.