2014-12-02 18:00:00
mitre
PUBLISHED
models/comment.php in Anchor CMS 0.9.2 and earlier allows remote attackers to inject arbitrary headers into mail messages via a crafted Host: header.