commons-email is vulnerable to information disclosure. If the Bounce Address
is not validated on the applications side, commons-email allows line-breaks in the address. This means that its possible for the email details to be manipulated.
CPE | Name | Operator | Version |
---|---|---|---|
apache commons email | le | 1.4 | |
apache commons email | le | 1.4 |