Denial of Service (CVE-2020-12697)
The extension provides a functionality to log clicks on links in sent newsletters. This functionality does not limit the amount of log entries generated per link, so it is possible to use a valid link to fill the log table with a huge amount of records.
CPE | Name | Operator | Version |
---|---|---|---|
direct_mail | le | 5.2.3 |