Posted by Dawid Golunski on Dec 27

PHPMailer < 5.2.18 Remote Code Execution [CVE-2016-10033]

Severity: CRITICAL

Discovered by:
Dawid Golunski (@dawid_golunski)
https://legalhackers.com

PHPMailer
“Probably the world’s most popular code for sending email from PHP!
Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii,
Joomla! and many more”

Desc:
An independent research uncovered a critical vulnerability in PHPMailer that
could potentially…