class.phpmailer.php in the PHPMailer library, as used in Moodle 1.9.x before 1.9.16, 2.0.x before 2.0.7, 2.1.x before 2.1.4, and 2.2.x before 2.2.1 and other products, allows remote authenticated users to inject arbitrary e-mail headers via vectors involving a crafted (1) From: or (2) Sender: header.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2012-07-17T10:00:00
Updated: 2024-08-06T18:38:14.388Z
Reserved: 2012-01-19T00:00:00
Link: CVE-2012-0796
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-07-17T10:20:53.053
Modified: 2024-11-21T01:35:44.537
Link: CVE-2012-0796
Redhat
No data.