CRLF Injection Vulnerability in dotCMS Email Functionality

CRLF Injection Vulnerability in dotCMS Email Functionality

CVE-2016-4803 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

CRLF injection vulnerability in the send email functionality in dotCMS before 3.3.2 allows remote attackers to inject arbitrary email headers via CRLF sequences in the subject.

Learn more about our Cms Pen Testing.