1.6.1

DATE	CVE	VULNERABILITY TITLE	RISK
2009-12-24	CVE-2009-4417	Permissions, Privileges, and Access Controls vulnerability in Zend Framework The shutdown function in the Zend_Log_Writer_Mail class in Zend Framework (ZF) allows context-dependent attackers to send arbitrary e-mail messages to any recipient address via vectors related to "events not yet mailed." network low complexity zend CWE-264	5.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.