27 Jan 2020
Vulnérabilité CVE-2015-3154 CVE Vulnerability
CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the header of an email. (CVSS:4.3) (Last Update:2020-01-30)
Vulnerability Details : CRLF injection vulnerability in Zend\Mail (Zend_Mail) in Zend Framework before 1.12.12, 2.x before 2.3.8, and 2.4.x before 2.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the header of an email. Publish Date : 2020-01-27 Last Update Date : 2020-01-30 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-3154
- Number Of Affected Versions By Product
- References For CVE-2015-3154
| |||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-3154There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |