CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mime Mail Module Project: Security Vulnerabilities

CVE-2012-4495

The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.

CVSS Score

4.0

EPSS Score

0.004

Published

2012-10-31

Page 1

Vulnerabilities

Vulnerable Software

Mime Mail Module Project: Security Vulnerabilities

Products

Pricing

Contact Us