Categories

Applications (151)
Blogs (3)
Content Management (101)
Customer Relationship (2)
Discussion Boards (19)
E-Commerce (8)
General Purpose Directories (1)
Image Galleries (15)
Mailing Lists (1)
Tips (3)
Vulnerabilities (249)
Access Bypass (42)
Cross Site Scripting (94)
Denial Of Service (2)
File Inclusion (40)
Information Disclosure (13)
Privilege Escalation (2)
Remote Command Execution (12)
Session Hijacking (1)
SQL Injection (84)
« PHP Live! Request.PHP Cross-Site Scripting
Joomla JEvents Component Remote File Include »

PHPMailer Remote Command Execution

Published by TL Guan June 21st, 2007 in Mailing Lists and Remote Command Execution.

Application: PHPMailer
Affected Version: 1.73 or other versions may be affected
Vendor’s URL: http://phpmailer.sourceforge.net/
Bug Type: Remote Command Execution
Risk Level: Critical

Solution:
Edit the source code to make sure input is properly verified
Stop using this application until patch is released.
Waiting for updates or patches from vendor

0 Responses to “PHPMailer Remote Command Execution”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« PHP Live! Request.PHP Cross-Site Scripting
Joomla JEvents Component Remote File Include »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional