Vulnerabilities > Mime Mail Module Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-10-31 | CVE-2012-4495 | Permissions, Privileges, and Access Controls vulnerability in Mime Mail Module Project Mimemail 6.X1.0/6.X1.X The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments. | 4.0 |