CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Pear: >> Pear >> 1.1.14 Security Vulnerabilities

CVE-2009-4023

Argument injection vulnerability in the sendmail implementation of the Mail::Send method (Mail/sendmail.php) in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111.

CVSS Score

7.5

EPSS Score

0.031

Published

2009-11-29

Page 1

Vulnerabilities

Vulnerable Software

Pear: >> Pear >> 1.1.14 Security Vulnerabilities

Products

Pricing

Contact Us