PHPMailer < 5.2.20 is vulnerable to RCE, is your plugin secure? | WordPress.org

Resolved Shadi Habbal
(@kerpanic)

7 years, 3 months ago

Hi,

A RCE vulnerability in PHPMailer < 5.2.20 has been disclosed recently.

Does your plugin use the vulnerable version?

Appreciate your feedback ASAP.

Viewing 3 replies - 1 through 3 (of 3 total)

Marco Almeida | Webdados
(@webdados)

7 years, 3 months ago

This plugin uses the WordPress bundled PHPMailer.

Thread Starter Shadi Habbal
(@kerpanic)

7 years, 3 months ago

Ah, great. Thanks for the feedback Marco.

Yes, I have just took a look at the source code.

Regards
Shadi

Callum Macdonald
(@chmac)

7 years, 1 month ago

@webdados is correct, PHPMailer is shipped with WordPress.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘PHPMailer < 5.2.20 is vulnerable to RCE, is your plugin secure?’ is closed to new replies.

In: Plugins
3 replies
3 participants
Last reply from: Callum Macdonald
Last activity: 7 years, 1 month ago
Status: resolved