|
Mambo Open Source contains a flaw that may allow a remote attacker to relay mail. The issue is due to the contact.php script not properly authenticating a remote user. By providing custom arguments to the variables, a remote attacker can craft mail that will be sent through the remote server and appear to come from no one.
|