CRLF injection vulnerability in bizmail.cgi in Biz Mail Form before 2.2 allows remote attackers to bypass the email check and send spam e-mail via CRLF sequences and forged mail headers in the email parameter.
Software | From | Fixed in |
---|---|---|
seth_m._knorr / biz_mail_form | - | 2.1.x |