Warning: Security vulnerability in PHPMailer

Print
Go Down Pages1
User actions

DarkViper

#1
December 29, 2016, 01:23:50 AM Last Edit: April 16, 2017, 02:33:57 PM by DarkViper
This warning only applies to WebsiteBaker before version 2.10.0

There's a lot of noise going around at the moment regarding a vulnerability in PHPMailer and SwiftMailer too.
There an attacker can control the from address a script uses they can pass arbitrary arguments to the sendmail binary. The vulnerability does not touch the SMTP transport.

Quote
Today we published the newest release from the vendor packet of PHPMailer v.5.2.21. You can download it from WebsiteBaker Wiki
Please install this packet as soon as possible.
[url=http://www.youtube.com/watch?v=tmzDAz6ZvFQ]Der blaue Planet[/url] - er ist nicht unser Eigentum - wir haben ihn nur von unseren Nachkommen geliehen[br]
[i]"You have to take the men as they are... but you can not leave them like that !" :-P [/i]
[i]Das tägliche Stoßgebet: [b]Oh Herr, wirf Hirn vom Himmel ![/b][/i]
Print
Go Up Pages1
User actions
SMF 2.1.4 © 2023, Simple Machines
ProCurve Theme Made By : TwitchisMental