mailto.exe in Brian Dorricott MAILTO 1.0.9 and earlier allows remote attackers to send SPAM e-mail through remote servers by modifying the sendto, email, server, subject, and resulturl hidden form fields.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| brian_dorricott | mailto | 1.0.8 |
| brian_dorricott | mailto | 1.0.7 |
| brian_dorricott | mailto | 1.0.9 |