6 matches found
EUVD-2006-0719
Malware in sbrugna...
[SA18868] Squishdot Mail Header Injection Vulnerability
TITLE: Squishdot Mail Header Injection Vulnerability SECUNIA ADVISORY ID: SA18868 VERIFY ADVISORY: http://secunia.com/advisories/18868/ CRITICAL: Moderately critical IMPACT: Security Bypass WHERE: From remote SOFTWARE: Squishdot 1.x http://secunia.com/product/8080/ DESCRIPTION: A vulnerability ha...
Crlf injection
mailhtml template in Squishdot 1.5.0 and earlier does not properly validate the 1 email and 2 title variables, which allows remote attackers to bypass spam filters by injecting SMTP headers, probably due to a CRLF injection vulnerability...
CVE-2006-0712
mailhtml template in Squishdot 1.5.0 and earlier does not properly validate the 1 email and 2 title variables, which allows remote attackers to bypass spam filters by injecting SMTP headers, probably due to a CRLF injection vulnerability...
CVE-2006-0712
mailhtml template in Squishdot 1.5.0 and earlier does not properly validate the 1 email and 2 title variables, which allows remote attackers to bypass spam filters by injecting SMTP headers, probably due to a CRLF injection vulnerability...
CVE-2006-0712
The CVE-2006-0712 issue affects Squishdot before 1.5.0 and its mail_html template, where improper validation of the (1) email and (2) title variables enables remote attackers to inject SMTP headers (likely via CRLF) and bypass spam filters. The root cause is input validation gaps in the mail_html...