CVE-2008-4148

The CVE-2008-4148 vulnerability affects the Drupal Mailhandler module (5.x up to 5.x-1.4; 6.x up to 6.x-1.4). Root cause: SQL queries are constructed without using the Drupal database API, enabling remote attackers to execute arbitrary SQL commands via unspecified vectors. Impact and exploit deta...