Mime Mail Module Project: >> Mimemail Security Vulnerabilities
The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.
CVSS Score
4.0
EPSS Score
0.004
Published
2012-10-31