6.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
50.8%
models/comment.php in Anchor CMS 0.9.2 and earlier allows remote attackers to inject arbitrary headers into mail messages via a crafted Host: header.
packetstormsecurity.com/files/129042/Anchor-CMS-0.9.2-Header-Injection.html