Description

The mailto (aka com_mailto) component in Joomla! 1.5 before 1.5.7 sends e-mail messages without validating the URL, which allows remote attackers to transmit spam.

Remediation

References

CVE-2008-4103

Related Vulnerabilities

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2365)

WordPress Plugin Tiny URL Cross-Site Scripting (1.3.2)

Zope Web Application Server Cryptographic Issues Vulnerability (CVE-2012-6661)

MySQL CVE-2019-2495 Vulnerability (CVE-2019-2495)

Coppermine Open Redirection Vulnerability (CVE-2015-3922)

Severity

Medium

Classification

CVE-2008-4103 CWE-20

Tags

Missing Update Known Vulnerabilities