CVE-2009-4023

CVE-2009-4023 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Argument injection vulnerability in the sendmail implementation of the Mail::Send method (Mail/sendmail.php) in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111.

Learn more about our Web Application Penetration Testing UK.