TYPO3 Security Bulletin TYPO3-20070221-1: Email header injection

Wed. 21st February, 2007

A problem has been discovered where the internal form engine can be used for sending arbitrary mail headers, using it for purposes which it is not meant for.

This is a companion discussion topic for the original entry at https://typo3.org/article/typo3-security-bulletin-typo3-20070221-1-email-header-injection/