CVE-2007-1900 (retired)

Priority
Description
CRLF injection vulnerability in the FILTER_VALIDATE_EMAIL filter in
ext/filter in PHP 5.2.0 and 5.2.1 allows context-dependent attackers to
inject arbitrary e-mail headers via an e-mail address with a '\n'
character, which causes a regular expression to ignore the subsequent part
of the address string.
Package
Source: php5 (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:08:00 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)