Vulnerabilities > CGI Rescue > CGI WEB Mailer > Medium

DATE CVE VULNERABILITY TITLE RISK
2009-05-08 CVE-2009-1591 Cross-Site Scripting vulnerability in CGI Rescue CGI web Mailer
CRLF injection vulnerability in CGI RESCUE Web Mailer before 1.04 allows remote attackers to inject arbitrary HTTP headers, and conduct cross-site scripting (XSS) or HTTP response splitting attacks, via CRLF sequences in an unspecified web form.
network
cgi-rescue CWE-79
4.3