CVE-2016-10033

Description: The mailSend function in the isMail transport in PHPMailer before 5.2.18 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property.

Link: Visit the GitHub Repository

Language: Python

Owner: sealldeveloper

Stars: 0

Forks: 0