Phpmailer_project Phpmailer
4 CVEs affecting Phpmailer_project Phpmailer. Latest disclosed: 2017-07-20. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2016-10045 | Critical | 9.8 | 2016-12-30 | The isMail transport in PHPMailer before 5.2.20 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary co… |
CVE-2017-11503 | Medium | 6.1 | 2017-07-20 | PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php. |
CVE-2017-5223 | Medium | 5.5 | 2017-01-16 | An issue was discovered in PHPMailer before 5.2.22. PHPMailer's msgHTML method applies transformations to an HTML document to make it usable as an email messag… |
CVE-2015-8476 | | 2015-12-16 | Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an (1) email address… |