• info
• discussion
• exploit
• solution
• references

Biz Mail Form CVE-2005-0493 Security Bypass Vulnerability

Biz Mail Form is prone to a security bypass vulnerability. CRLF injection vulnerability in bizmail.cgi in Biz Mail Form before 2.2 allows remote attackers to bypass the email check and send spam e-mail via CRLF sequences and forged mail headers in the email parameter.