VYPR

Mime Mail

by Drupal

CVEs (1)

  • CVE-2012-4495Oct 31, 2012
    risk 0.00cvss epss 0.01

    The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.