phpwcms act_formmailer.php HTTP_REFERER Email Header Injection

ID OSVDB:25137
Type osvdb
Reporter OSVDB
Modified 2006-04-21T05:32:40


Solution Description

Upgrade to version 1.2.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.


Vendor Specific News/Changelog Entry: Secunia Advisory ID:19866 Related OSVDB ID: 25136 ISS X-Force ID: 26130 FrSIRT Advisory: ADV-2006-1556 CVE-2006-7020