[LDEV-1021] cfmail subject doesn't sanitise new lines - Lucee

Details

Type: Bug
Status: Deployed
Priority: Minor
Resolution: Fixed
Affects Version/s: 4.5.2.017, 5.0.0.252
Fix Version/s: 5.2.8.42
Labels:
- cfmail
- mail

Sprint:
May 2018 Sprint

Description

The following code (change someone@import.ant to yourself, obviously) on lucee will result in a mangled email. ACF11 properly strips the newlines from the subject.

<cfsavecontent variable="thesubject">testing

End of Subject
</cfsavecontent>
<cfmail to="someone@import.ant" subject="#thesubject#" from="someone@import.ant" type="text/html">
        <p>Testing</p>
</cfmail>

Relevant headers from the mail source
Lucee:

Subject: testing

End of Subject
MIME-Version: 1.0
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Mailer: Lucee Mail


        <p>Testing</p>

ACF:

Subject: testing End of Subject
MIME-Version: 1.0
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: 7bit
X-Mailer: ColdFusion 11 Application Server


        <p>Testing</p>

Attachments

Activity

People

Assignee:

Igal Sapir

Reporter:

Ben Bluemel

Votes:

2 Vote for this issue

Watchers:

7 Start watching this issue

Dates

Created:

03/Oct/16 11:50 AM

Updated:

08/Jun/18 3:54 PM

Resolved:

01/Jun/18 7:53 PM