Phpmailer: >> Phpmailer Security Vulnerabilities
PHPMailer 1.7, when configured to use sendmail, allows remote attackers to execute arbitrary shell commands via shell metacharacters in the SendmailSend function in class.phpmailer.php.
CVSS Score
6.8
EPSS Score
0.029
Published
2007-06-14
The Data function in class.smtp.php in PHPMailer 1.7.2 and earlier allows remote attackers to cause a denial of service (infinite loop leading to memory and CPU consumption) via a long header field.
CVSS Score
5.0
EPSS Score
0.154
Published
2005-05-28