CVE-2007-4612

Name of the Vulnerable Software and Affected Versions Moonware (aka Dale Mooney Gallery) (affected versions not specified)

Description The issue is related to a CRLF injection vulnerability in the contact.php file. This allows remote attackers to add arbitrary mail headers via CRLF sequences in the subject parameter. It can be leveraged for spam by adding To or Cc headers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.