PT-2009-3619 · Drupal · Send By E-Mail

Published

2009-03-20

Updated

2009-03-26

CVE-2009-1037

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Drupal module "Send by e-mail" versions 5.x before 5.x-4.4 Drupal module "Send by e-mail" versions 6.x before 6.x-1.4

Description The issue allows remote attackers to send unlimited spam messages via unknown vectors related to the flood control API.

Recommendations For versions 5.x before 5.x-4.4, update to version 5.x-4.4 or later. For versions 6.x before 6.x-1.4, update to version 6.x-1.4 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-1037

Affected Products

Send By E-Mail

PT-2009-3619 · Drupal · Send By E-Mail

CVE-2009-1037

Related Identifiers

Affected Products

References · 5