[HIGH] RCE affecting Windows hosts via UNC paths to translation files

PKSA-35kn-2ddp-d3p4 CVE-2021-34551 GHSA-7q44-r25x-wm4q

Affected version: <6.5.0

Reported by:
GitHub, FriendsOfPHP/security-advisories

[LOW] Untrusted code may be run from an overridden address validator

PKSA-m8by-bb7v-7qt5 CVE-2021-3603 GHSA-77mr-wc79-m8j3

Affected version: <6.5.0

Reported by:
GitHub, FriendsOfPHP/security-advisories

[HIGH] Insufficient output escaping of attachment names in PHPMailer

PKSA-8sw7-9x88-c8bx CVE-2020-13625 GHSA-f7hx-fqxw-rvvj

Affected version: <6.1.6

Reported by:
GitHub

[MEDIUM] XSS vulnerability in code example

PKSA-g8hj-dw43-q8td CVE-2017-11503 GHSA-58mj-pw57-4vm2

Affected version: >=5.0.0,<5.2.24

Reported by:
GitHub, FriendsOfPHP/security-advisories

[HIGH] Object injection

PKSA-dn5d-4vy3-wsfy CVE-2018-19296 GHSA-7w4p-72j7-v7c2

Affected version: >=5.0.0,<5.2.27|>=6.0.0,<6.0.6

Reported by:
GitHub, FriendsOfPHP/security-advisories

[MEDIUM] Local File Disclosure

PKSA-5nj1-dvnw-7cyx CVE-2017-5223 GHSA-4x5h-cr29-fhp6

Affected version: >=5.0.0,<5.2.22

Reported by:
GitHub, FriendsOfPHP/security-advisories