QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2007-1900

Back to search

CVE-2007-1900

Published: Apr 10, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

CRLF injection vulnerability in the FILTER_VALIDATE_EMAIL filter in ext/filter in PHP 5.2.0 and 5.2.1 allows context-dependent attackers to inject arbitrary e-mail headers via an e-mail address with a '\n' character, which causes a regular expression to ignore the subsequent part of the address string.

VendorProductVersions

n/a

n/a

affected
n/a

References

26231
third-party-advisory
x_refsource_SECUNIA
25056
third-party-advisory
x_refsource_SECUNIA
27110
third-party-advisory
x_refsource_SECUNIA
DSA-1283
vendor-advisory
x_refsource_DEBIAN
33962
vdb-entry
x_refsource_OSVDB
GLSA-200705-19
vendor-advisory
x_refsource_GENTOO
ADV-2007-2016
vdb-entry
x_refsource_VUPEN
GLSA-200710-02
vendor-advisory
x_refsource_GENTOO
oval:org.mitre.oval:def:6067
vdb-entry
signature
x_refsource_OVAL
25062
third-party-advisory
x_refsource_SECUNIA
FEDORA-2007-2215
vendor-advisory
x_refsource_FEDORA
24824
third-party-advisory
x_refsource_SECUNIA
2007-0023
vendor-advisory
x_refsource_TRUSTIX
USN-455-1
vendor-advisory
x_refsource_UBUNTU
ADV-2007-3386
vdb-entry
x_refsource_VUPEN
27037
third-party-advisory
x_refsource_SECUNIA
SSA:2007-152-01
vendor-advisory
x_refsource_SLACKWARE
SSRT071447
vendor-advisory
x_refsource_HP
HPSBUX02262
vendor-advisory
x_refsource_HP
25535
third-party-advisory
x_refsource_SECUNIA
27102
third-party-advisory
x_refsource_SECUNIA
25445
third-party-advisory
x_refsource_SECUNIA
23359
vdb-entry
x_refsource_BID
25057
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:032
vendor-advisory
x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now