Posted 1 year ago #
Events-manager uses an outdated and very insecure set of PHPMailer versions (1.02 and 1.73), which not only can be used for spamming, but also were designed for PHP 4.
PHP 4 was discontinued nearly four years ago.
PHPMailer's current version is 5.1, which is designed for PHP 5 and 6.
This needs to be updated yesteryear.
agreed, thx will check that out.
Posted 1 year ago #
Apparently, it's 5.2 that's the most recent version. I don't check this software's version that often, since it's infrequently updated.
http://code.google.com/a/apache-extras.org/p/phpmailer/source/list
it's been a while, last time i dled it the project was still hosted on sourceforge :)
done, added to dev version, will be out in next update.
Posted 1 year ago #
Thanks for the quick response.
Now for the rest of those plugins/themes using PHPMailer < 5.1 and/or TimThumb < 2.8.2…
Posted 1 year ago #
BTW and OT, I suggest creating a timthumb-config.php with the following code:
define ('ALLOW_EXTERNAL', FALSE);
done, no need for external sites, good point.
This topic has been closed to new replies.
