Vulnerabilities > Drupal > Form Mail Module

DATE CVE VULNERABILITY TITLE RISK
2006-07-10 CVE-2006-3473 CRLF Injection vulnerability in Drupal Form_mail Module
CRLF injection vulnerability in form_mail Drupal Module before 1.8.2.2 allows remote attackers to inject e-mail headers, which facilitates sending spam messages, a different issue than CVE-2006-1225.
network
low complexity
drupal
7.5