Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CRLF injection vulnerability in the mail function in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allows remote attackers to inject arbitrary e-mail headers and possibly conduct spam attacks via a control character immediately following folding of the (1) Subject or (2) To parameter, as demonstrated by a parameter containing a "\r\n\t\n" sequence, related to an increment bug in the SKIP_LONG_HEADER_SEP macro.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP 邮件函数 CRLF注入漏洞
Vulnerability Description
PHP 4.0.0到4.4.6和5.0.0到5.2.1版本的邮件函数中存在CRLF注入漏洞。远程攻击者可以借助一个控件字符,注入任意的电子邮件标头和可能执行蠕虫攻击。
CVSS Information
N/A
Vulnerability Type
N/A