courier/1000@/api_error_email.html (aka error reporting page) in Accellion File Transfer Appliance FTA_7_0_178, and possibly other versions before FTA_7_0_189, allows remote attackers to send spam e-mail via modified description and client_email parameters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Secure_file_transfer_appliance | Accellion | * | 7_0_178 |
Secure_file_transfer_appliance | Accellion | 7_0_135 | 7_0_135 |