Mime Mail Module Project » Mimemail : Security Vulnerabilities, CVEs,
The Mime Mail module 6.x-1.x before 6.x-1.1 for Drupal does not properly restrict access to files outside Drupal's publish files directory, which allows remote authenticated users to send arbitrary files as attachments.
Max CVSS
4.0
EPSS Score
0.21%
Published
2012-10-31
Updated
2013-03-02
1 vulnerabilities found