Security #6: Update PHP Mailer to version 5.2.22 - WB 2.11.0 - Tracking

Actions

Copy link

Security #6

closed

Update PHP Mailer to version 5.2.22

Added by Matthias almost 8 years ago. Updated almost 8 years ago.

Status:

Done

Priority:

Dringend

Assignee:

Target version:

Start date:

2017-02-12

Due date:

% Done:

Estimated time:

Description

https://github.com/PHPMailer/PHPMailer

SECURITY Fix CVE-2017-5223, local file disclosure vulnerability if content passed to msgHTML() is sourced from unfiltered user input. Reported by Yongxiang Li of Asiasecurity. The fix for this means that calls to msgHTML() without a $basedir will not import images with relative URLs, and relative URLs containing .. will be ignored.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

WB 2.11.0

Security #6

Update PHP Mailer to version 5.2.22

Updated by Anonymous almost 8 years ago

Updated by Manuela almost 8 years ago