Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:composer/phpmailer/phpmailer@5.2.22

Type composer

Namespace phpmailer

Name phpmailer

Version 5.2.22

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version 6.5.0

Latest_non_vulnerable_version 6.5.0

Affected_by_vulnerabilities

url VCID-1vfj-98ky-yffc

vulnerability_id VCID-1vfj-98ky-yffc

summary

XSS vulnerability in code example
The `code_generator.phps` example does not filter user input prior to output. This file is distributed with a `.phps` extension, so it it not normally executable unless it is explicitly renamed, so it is safe by default. There's also an undisclosed potential XSS vulnerability in the default exception handler (unused by default).

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-11503

reference_id

reference_type

scores

value	0.0294
scoring_system	epss
scoring_elements	0.86718
published_at	2026-06-06T12:55:00Z

value	0.0294
scoring_system	epss
scoring_elements	0.86705
published_at	2026-06-08T12:55:00Z

value	0.0294
scoring_system	epss
scoring_elements	0.86715
published_at	2026-06-07T12:55:00Z

value	0.0294
scoring_system	epss
scoring_elements	0.86719
published_at	2026-06-05T12:55:00Z

value	0.0294
scoring_system	epss
scoring_elements	0.86697
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-11503

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11503
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11503

reference_url

https://cxsecurity.com/issue/WLB-2017060181

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://cxsecurity.com/issue/WLB-2017060181

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-11503.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-11503.yaml

reference_url	https://github.com/PHPMailer/PHPMailer/commit/dbbc1397c41de56aa3a57c8188d19a345dea5c63
reference_id
reference_type
scores
url	https://github.com/PHPMailer/PHPMailer/commit/dbbc1397c41de56aa3a57c8188d19a345dea5c63

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.24

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.24

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-58mj-pw57-4vm2

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-58mj-pw57-4vm2

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-11503

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-11503

reference_url

https://packetstormsecurity.com/files/143138/phpmailer-xss.txt

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://packetstormsecurity.com/files/143138/phpmailer-xss.txt

reference_url

http://www.securityfocus.com/bid/99293

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/99293

reference_url	http://www.securityfocus.com/bid/99293/
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/99293/

reference_url

http://www.securitytracker.com/id/1039026

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securitytracker.com/id/1039026

reference_url

https://github.com/advisories/GHSA-58mj-pw57-4vm2

reference_id

GHSA-58mj-pw57-4vm2

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-58mj-pw57-4vm2

reference_url	https://usn.ubuntu.com/5956-1/
reference_id	USN-5956-1
reference_type
scores
url	https://usn.ubuntu.com/5956-1/

reference_url	https://usn.ubuntu.com/5956-2/
reference_id	USN-5956-2
reference_type
scores
url	https://usn.ubuntu.com/5956-2/

fixed_packages

url pkg:composer/phpmailer/phpmailer@5.2.24

purl pkg:composer/phpmailer/phpmailer@5.2.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-sukc-unjh-efca

vulnerability	VCID-vugw-zaw7-7bg1

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.24

aliases CVE-2017-11503, GHSA-58mj-pw57-4vm2

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1vfj-98ky-yffc

url VCID-3p76-2t3z-kycu

vulnerability_id VCID-3p76-2t3z-kycu

summary

Object injection
PHPMailer is vulnerable to an object injection attack.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-19296

reference_id

reference_type

scores

value	0.01475
scoring_system	epss
scoring_elements	0.81292
published_at	2026-06-04T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81317
published_at	2026-06-08T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81323
published_at	2026-06-06T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81321
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-19296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19296

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2018-19296.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2018-19296.yaml

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.27

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.27

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.0.6

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.0.6

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-7w4p-72j7-v7c2

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-7w4p-72j7-v7c2

reference_url

https://lists.debian.org/debian-lts-announce/2018/12/msg00020.html

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2018/12/msg00020.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3B5WDPGUFNPG4NAZ6G4BZX43BKLAVA5B/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPU66INRFY5BQ3ESVPRUXJR4DXQAFJVT/

reference_url

https://www.debian.org/security/2018/dsa-4351

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.debian.org/security/2018/dsa-4351

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913912
reference_id	913912
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913912

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-19296

reference_id

CVE-2018-19296

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-19296

reference_url

https://github.com/advisories/GHSA-7w4p-72j7-v7c2

reference_id

GHSA-7w4p-72j7-v7c2

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7w4p-72j7-v7c2

reference_url	https://usn.ubuntu.com/5956-1/
reference_id	USN-5956-1
reference_type
scores
url	https://usn.ubuntu.com/5956-1/

fixed_packages

url pkg:composer/phpmailer/phpmailer@5.2.27

purl pkg:composer/phpmailer/phpmailer@5.2.27

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-sukc-unjh-efca

vulnerability	VCID-vugw-zaw7-7bg1

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.27

url pkg:composer/phpmailer/phpmailer@6.0.6

purl pkg:composer/phpmailer/phpmailer@6.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-sukc-unjh-efca

vulnerability	VCID-vugw-zaw7-7bg1

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@6.0.6

aliases CVE-2018-19296, GHSA-7w4p-72j7-v7c2

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3p76-2t3z-kycu

url VCID-c62f-8m1j-tkdu

vulnerability_id VCID-c62f-8m1j-tkdu

summary

Improper Encoding or Escaping of Output
PHPMailer contains an output escaping bug when the name of a file attachment contains a double quote character. This can result in the file type being misinterpreted by the receiver or any mail relay processing the message.

references

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00067.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00085.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-13625

reference_id

reference_type

scores

value	0.04933
scoring_system	epss
scoring_elements	0.89802
published_at	2026-06-04T12:55:00Z

value	0.04933
scoring_system	epss
scoring_elements	0.89818
published_at	2026-06-08T12:55:00Z

value	0.04933
scoring_system	epss
scoring_elements	0.8982
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-13625

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13625
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13625

reference_url

https://github.com/PHPMailer/PHPMailer

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer

reference_url

https://github.com/PHPMailer/PHPMailer/commit/c2796cb1cb99d7717290b48c4e6f32cb6c60b7b3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/commit/c2796cb1cb99d7717290b48c4e6f32cb6c60b7b3

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.1.6

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.1.6

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-f7hx-fqxw-rvvj

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-f7hx-fqxw-rvvj

reference_url

https://lists.debian.org/debian-lts-announce/2020/06/msg00014.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2020/06/msg00014.html

reference_url

https://lists.debian.org/debian-lts-announce/2020/08/msg00004.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2020/08/msg00004.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFM3BZABL6RUHTVMXSC7OFMP4CKWMRPJ

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFM3BZABL6RUHTVMXSC7OFMP4CKWMRPJ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFM3BZABL6RUHTVMXSC7OFMP4CKWMRPJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EFM3BZABL6RUHTVMXSC7OFMP4CKWMRPJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMH4TC5XTS3KZVGMSKEPPBZ2XTZCKKCX

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMH4TC5XTS3KZVGMSKEPPBZ2XTZCKKCX

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMH4TC5XTS3KZVGMSKEPPBZ2XTZCKKCX/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SMH4TC5XTS3KZVGMSKEPPBZ2XTZCKKCX/

reference_url

https://usn.ubuntu.com/4505-1

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://usn.ubuntu.com/4505-1

reference_url	https://usn.ubuntu.com/4505-1/
reference_id
reference_type
scores
url	https://usn.ubuntu.com/4505-1/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962827
reference_id	962827
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=962827

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-13625

reference_id

CVE-2020-13625

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-13625

reference_url

https://github.com/advisories/GHSA-f7hx-fqxw-rvvj

reference_id

GHSA-f7hx-fqxw-rvvj

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-f7hx-fqxw-rvvj

reference_url	https://usn.ubuntu.com/5956-1/
reference_id	USN-5956-1
reference_type
scores
url	https://usn.ubuntu.com/5956-1/

fixed_packages

url pkg:composer/phpmailer/phpmailer@6.1.6

purl pkg:composer/phpmailer/phpmailer@6.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sukc-unjh-efca

vulnerability	VCID-vugw-zaw7-7bg1

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@6.1.6

aliases CVE-2020-13625, GHSA-f7hx-fqxw-rvvj

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c62f-8m1j-tkdu

url VCID-sukc-unjh-efca

vulnerability_id VCID-sukc-unjh-efca

summary

Inclusion of Functionality from Untrusted Control Sphere
PHPMailer contain a vulnerability that can result in untrusted code being called (if such code is injected into the host project's scope by other means).

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3603

reference_id

reference_type

scores

value	0.00778
scoring_system	epss
scoring_elements	0.74045
published_at	2026-06-05T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.74018
published_at	2026-06-08T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.74035
published_at	2026-06-07T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.74011
published_at	2026-06-04T12:55:00Z

value	0.00778
scoring_system	epss
scoring_elements	0.74049
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3603

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3603
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3603

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2021-3603.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2021-3603.yaml

reference_url

https://github.com/PHPMailer/PHPMailer

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer

reference_url

https://github.com/PHPMailer/PHPMailer/commit/45f3c18dc6a2de1cb1bf49b9b249a9ee36a5f7f3

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/commit/45f3c18dc6a2de1cb1bf49b9b249a9ee36a5f7f3

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.5.0

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.5.0

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-77mr-wc79-m8j3

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-77mr-wc79-m8j3

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM/

reference_url

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3603

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3603

reference_url

https://www.huntr.dev/bounties/1-PHPMailer/PHPMailer

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.huntr.dev/bounties/1-PHPMailer/PHPMailer

reference_url	https://www.huntr.dev/bounties/1-PHPMailer/PHPMailer/
reference_id
reference_type
scores
url	https://www.huntr.dev/bounties/1-PHPMailer/PHPMailer/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991666
reference_id	991666
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991666

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-3603

reference_id

CVE-2021-3603

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-3603

reference_url

https://github.com/advisories/GHSA-77mr-wc79-m8j3

reference_id

GHSA-77mr-wc79-m8j3

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-77mr-wc79-m8j3

reference_url	https://usn.ubuntu.com/5956-1/
reference_id	USN-5956-1
reference_type
scores
url	https://usn.ubuntu.com/5956-1/

fixed_packages

url	pkg:composer/phpmailer/phpmailer@6.5.0
purl	pkg:composer/phpmailer/phpmailer@6.5.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@6.5.0

aliases CVE-2021-3603, GHSA-77mr-wc79-m8j3

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sukc-unjh-efca

url VCID-vugw-zaw7-7bg1

vulnerability_id VCID-vugw-zaw7-7bg1

summary

Unrestricted Upload of File with Dangerous Type
PHPMailer on Windows allows remote code execution if lang_path is untrusted data and has a UNC pathname.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-34551

reference_id

reference_type

scores

value	0.02108
scoring_system	epss
scoring_elements	0.84413
published_at	2026-06-04T12:55:00Z

value	0.02108
scoring_system	epss
scoring_elements	0.8442
published_at	2026-06-08T12:55:00Z

value	0.02108
scoring_system	epss
scoring_elements	0.84432
published_at	2026-06-07T12:55:00Z

value	0.02108
scoring_system	epss
scoring_elements	0.84439
published_at	2026-06-06T12:55:00Z

value	0.02108
scoring_system	epss
scoring_elements	0.84436
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-34551

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2021-34551.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2021-34551.yaml

reference_url

https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md

reference_url

https://github.com/PHPMailer/PHPMailer/commit/acd264bf17ff4ac5c915f0d4226dce8a9ea70bc3

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/commit/acd264bf17ff4ac5c915f0d4226dce8a9ea70bc3

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.5.0

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v6.5.0

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-7q44-r25x-wm4q

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-7q44-r25x-wm4q

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YRMWGA4VTMXFB22KICMB7YMFZNFV3EJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FJYSOFCUBS67J3TKR74SD3C454N7VTYM/

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2021-34551

reference_id

CVE-2021-34551

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2021-34551

reference_url

https://github.com/advisories/GHSA-7q44-r25x-wm4q

reference_id

GHSA-7q44-r25x-wm4q

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7q44-r25x-wm4q

fixed_packages

url	pkg:composer/phpmailer/phpmailer@6.5.0
purl	pkg:composer/phpmailer/phpmailer@6.5.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@6.5.0

aliases CVE-2021-34551, GHSA-7q44-r25x-wm4q

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vugw-zaw7-7bg1

Fixing_vulnerabilities

url VCID-1a47-cc8v-xbdu

vulnerability_id VCID-1a47-cc8v-xbdu

summary

Local File Disclosure
PHPMailer's `msgHTML` method applies transformations to an HTML document to make it usable as an email message body. One of the transformations is to convert relative image URLs into attachments using a script-provided base directory. If no base directory is provided, it resolves to `/`, meaning that relative image URLs get treated as absolute local file paths and added as attachments.

references

reference_url

http://kalilinux.co/2017/01/12/phpmailer-cve-2017-5223-local-information-disclosure-vulnerability-analysis

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://kalilinux.co/2017/01/12/phpmailer-cve-2017-5223-local-information-disclosure-vulnerability-analysis

reference_url	http://kalilinux.co/2017/01/12/phpmailer-cve-2017-5223-local-information-disclosure-vulnerability-analysis/
reference_id
reference_type
scores
url	http://kalilinux.co/2017/01/12/phpmailer-cve-2017-5223-local-information-disclosure-vulnerability-analysis/

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-5223

reference_id

reference_type

scores

value	0.02922
scoring_system	epss
scoring_elements	0.86667
published_at	2026-06-08T12:55:00Z

value	0.02922
scoring_system	epss
scoring_elements	0.86659
published_at	2026-06-04T12:55:00Z

value	0.02922
scoring_system	epss
scoring_elements	0.86682
published_at	2026-06-05T12:55:00Z

value	0.02922
scoring_system	epss
scoring_elements	0.86681
published_at	2026-06-06T12:55:00Z

value	0.02922
scoring_system	epss
scoring_elements	0.86677
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-5223

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5223
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5223

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:S/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-5223.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2017-5223.yaml

reference_url

https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/blob/master/SECURITY.md

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.22

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.22

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-4x5h-cr29-fhp6

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-4x5h-cr29-fhp6

reference_url

https://www.exploit-db.com/exploits/43056

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/43056

reference_url	https://www.exploit-db.com/exploits/43056/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/43056/

reference_url

http://www.securityfocus.com/bid/95328

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.securityfocus.com/bid/95328

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853232
reference_id	853232
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=853232

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/43056.py
reference_id	CVE-2017-5223
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/43056.py

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2017-5223

reference_id

CVE-2017-5223

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2017-5223

reference_url

https://github.com/advisories/GHSA-4x5h-cr29-fhp6

reference_id

GHSA-4x5h-cr29-fhp6

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-4x5h-cr29-fhp6

reference_url	https://usn.ubuntu.com/5956-1/
reference_id	USN-5956-1
reference_type
scores
url	https://usn.ubuntu.com/5956-1/

fixed_packages

url pkg:composer/phpmailer/phpmailer@5.2.22

purl pkg:composer/phpmailer/phpmailer@5.2.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-sukc-unjh-efca

vulnerability	VCID-vugw-zaw7-7bg1

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.22

aliases CVE-2017-5223, GHSA-4x5h-cr29-fhp6

risk_score 10.0

exploitability 2.0

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1a47-cc8v-xbdu

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.22

Package Instance