phpmailer/phpmailer Security Advisories for v5.2.21 (6)
-
[HIGH] RCE affecting Windows hosts via UNC paths to translation files
PKSA-35kn-2ddp-d3p4 CVE-2021-34551 GHSA-7q44-r25x-wm4q
Affected version: <6.5.0
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[LOW] Untrusted code may be run from an overridden address validator
PKSA-m8by-bb7v-7qt5 CVE-2021-3603 GHSA-77mr-wc79-m8j3
Affected version: <6.5.0
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Insufficient output escaping of attachment names in PHPMailer
PKSA-8sw7-9x88-c8bx CVE-2020-13625 GHSA-f7hx-fqxw-rvvj
Affected version: <6.1.6
Reported by:
GitHub -
[MEDIUM] XSS vulnerability in code example
PKSA-g8hj-dw43-q8td CVE-2017-11503 GHSA-58mj-pw57-4vm2
Affected version: >=5.0.0,<5.2.24
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] Object injection
PKSA-dn5d-4vy3-wsfy CVE-2018-19296 GHSA-7w4p-72j7-v7c2
Affected version: >=5.0.0,<5.2.27|>=6.0.0,<6.0.6
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[MEDIUM] Local File Disclosure
PKSA-5nj1-dvnw-7cyx CVE-2017-5223 GHSA-4x5h-cr29-fhp6
Affected version: >=5.0.0,<5.2.22
Reported by:
GitHub, FriendsOfPHP/security-advisories