Results 1 to 3 of 3

Thread: email header injection in ClassiPress

  1. #1
    Thread Starter
    Veteran almightyeric's Avatar
    Join Date
    Aug 2011
    Location
    Nothern CA, USA
    Posts
    416
    Thanks
    56
    Thanked 19 Times in 16 Posts

    email header injection in ClassiPress

    I want to customize my "contact ad poster" email so the subject line contains the title of the ad.

    For example, producing an email with a header like this, where Adam is the ad poster, Vicky is the ad visitor, and the ad title is "A cool car for sale."

    To: "Adam Poster" <adam.poster@gmail.com>
    Reply-to: "Vicky Visitor" <vicky.visitor@hotmail.com>
    From: "My Classified Site" <wordpress@myclassifiedsite.com>
    Subject: A cool car for sale
    I am worried someone will be able to do email header injection by having the ad title contain special characters (like, posting an ad himself, then responding to his own ad with malicious intent).

    For example, if the ad title were:

    A cool car for sale\r\ncc: spam.victim@example.com\r\nbcc: another.spam.victim@example.com
    Would that make the header be this?

    To: "Adam Poster" <adam.poster@gmail.com>
    Reply-to: "Vicky Visitor" <vicky.visitor@hotmail.com>
    From: "My Classified Site" <wordpress@myclassifiedsite.com>
    Subject: A cool car for sale
    cc:
    spam.victim@example.com
    bcc:
    another.spam.victim@example.com
    Would the email header contain those two fields ("cc:" and "bcc:"), or would something sanitize the subject along the way (e.g. wp_mail() )? Or is it impossible for an ad title to have values that could be used in email header injection?

  2. #2
    Kar1nUSA's Avatar
    Join Date
    Nov 2013
    Location
    United States
    Posts
    214
    Thanks
    32
    Thanked 19 Times in 18 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

  3. #3
    Thread Starter
    Veteran almightyeric's Avatar
    Join Date
    Aug 2011
    Location
    Nothern CA, USA
    Posts
    416
    Thanks
    56
    Thanked 19 Times in 16 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Ad Injection
    By akemx in forum Vantage General Discussion (Legacy)
    Replies: 0
    Last Post: April 10th, 2013, 08:07 AM
  2. [SOLVED] Serious fault injection of code into user panel
    By sparrowsitn in forum Report ClassiPress Bugs
    Replies: 4
    Last Post: February 6th, 2012, 08:28 AM
  3. xss injection
    By Peksa in forum Clipper General Discussion
    Replies: 8
    Last Post: September 29th, 2011, 04:59 PM
  4. Hackers and SQL-injection protection.
    By katjaaclass in forum ClassiPress General Discussion
    Replies: 5
    Last Post: February 21st, 2011, 10:22 PM
  5. SQL Injection, Security Concern
    By imomin in forum Report ClassiPress Bugs
    Replies: 1
    Last Post: September 2nd, 2010, 02:40 PM