Skip to content

SMTP Injection in PHPMailer

Low severity GitHub Reviewed Published Mar 5, 2020 in PHPMailer/PHPMailer • Updated Jan 9, 2023

Package

composer phpmailer/phpmailer (Composer)

Affected versions

>= 5.0.0, < 5.2.14

Patched versions

5.2.14
@Synchro Synchro published to PHPMailer/PHPMailer Mar 5, 2020
Reviewed Mar 5, 2020
Published to the GitHub Advisory Database Mar 5, 2020
Last updated Jan 9, 2023

Severity

Low

EPSS score

0.365%
(72nd percentile)

Weaknesses

CVE ID

CVE-2015-8476

GHSA ID

GHSA-738m-f33v-qc2r

Source code

No known source code
Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.