Mime Mail Module Project: >> Mimemail >> 6.x-1.0 Security Vulnerabilities
The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.
CVSS Score
4.0
EPSS Score
0.004
Published
2012-10-31