|
Mhonarc Mail Header HTML Injection Vulnerability
There is no exploit code required. Simply crafting a message similar to the following provided by Earl Hood <earl@earlhood.com> can exploit the vulnerability: To: <someone@example.com> From: <hacker@example.com> Header<SCRIPT>hello</SCRIPT>def: whatever |
|
 Privacy Statement |
