Details
-
Enhancement
-
Status: Resolved (View Workflow)
-
Minor
-
Resolution: Done
-
None
-
None
-
Security Level: Default (Default Security Scheme)
-
5
-
Horizon 22 - Feb 16 - Mar 2, Horizon 22 - Mar 2 - 16
Description
The current MailerServlet uses a system call to /bin/mail to send emails. This is vulnerable to command injection. We should switch to something like Simple Java Mail or Spring email support.