Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-f41k-wzub-33da

Summary multiple issues

Aliases

alias	CVE-2016-10045

alias	GHSA-4pc3-96mx-wwc8

Fixed_packages

url	pkg:alpm/archlinux/wordpress@4.7.1-1
purl	pkg:alpm/archlinux/wordpress@4.7.1-1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/wordpress@4.7.1-1

url pkg:composer/phpmailer/phpmailer@5.2.20

purl pkg:composer/phpmailer/phpmailer@5.2.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.20

url	pkg:deb/debian/libphp-phpmailer@0?distro=trixie
purl	pkg:deb/debian/libphp-phpmailer@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libphp-phpmailer@0%3Fdistro=trixie

url pkg:deb/debian/libphp-phpmailer@6.2.0-2?distro=trixie

purl pkg:deb/debian/libphp-phpmailer@6.2.0-2?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-sukc-unjh-efca

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/libphp-phpmailer@6.2.0-2%3Fdistro=trixie

url	pkg:deb/debian/libphp-phpmailer@6.6.3-1?distro=trixie
purl	pkg:deb/debian/libphp-phpmailer@6.6.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libphp-phpmailer@6.6.3-1%3Fdistro=trixie

url	pkg:deb/debian/libphp-phpmailer@6.9.3-1?distro=trixie
purl	pkg:deb/debian/libphp-phpmailer@6.9.3-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/libphp-phpmailer@6.9.3-1%3Fdistro=trixie

Affected_packages

url pkg:alpm/archlinux/wordpress@4.7-1

purl pkg:alpm/archlinux/wordpress@4.7-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-4j2n-v8e2-n3d6

vulnerability	VCID-atfu-p1bf-nqgk

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-mr7z-mfz3-9bhm

vulnerability	VCID-t8sg-ebwy-9yaz

vulnerability	VCID-uet7-ayb1-k7be

vulnerability	VCID-v28c-t67z-8bh1

vulnerability	VCID-zay2-3jb2-dkdj

vulnerability	VCID-zbqa-xsg6-fqaz

resource_url http://public2.vulnerablecode.io/packages/pkg:alpm/archlinux/wordpress@4.7-1

url pkg:composer/phpmailer/phpmailer@5.2.11

purl pkg:composer/phpmailer/phpmailer@5.2.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.11

url pkg:composer/phpmailer/phpmailer@5.2.12

purl pkg:composer/phpmailer/phpmailer@5.2.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.12

url pkg:composer/phpmailer/phpmailer@5.2.13

purl pkg:composer/phpmailer/phpmailer@5.2.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.13

url pkg:composer/phpmailer/phpmailer@5.2.15

purl pkg:composer/phpmailer/phpmailer@5.2.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.15

url pkg:composer/phpmailer/phpmailer@5.2.16

purl pkg:composer/phpmailer/phpmailer@5.2.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.16

url pkg:composer/phpmailer/phpmailer@5.2.17

purl pkg:composer/phpmailer/phpmailer@5.2.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.17

url pkg:composer/phpmailer/phpmailer@5.2.19

purl pkg:composer/phpmailer/phpmailer@5.2.19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.19

url pkg:composer/phpmailer/phpmailer@5.2.2

purl pkg:composer/phpmailer/phpmailer@5.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.2

url pkg:composer/phpmailer/phpmailer@5.2.4

purl pkg:composer/phpmailer/phpmailer@5.2.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.4

url pkg:composer/phpmailer/phpmailer@5.2.5

purl pkg:composer/phpmailer/phpmailer@5.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.5

url pkg:composer/phpmailer/phpmailer@5.2.6

purl pkg:composer/phpmailer/phpmailer@5.2.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.6

url pkg:composer/phpmailer/phpmailer@5.2.7

purl pkg:composer/phpmailer/phpmailer@5.2.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.7

url pkg:composer/phpmailer/phpmailer@5.2.8

purl pkg:composer/phpmailer/phpmailer@5.2.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.8

url pkg:composer/phpmailer/phpmailer@5.2.9

purl pkg:composer/phpmailer/phpmailer@5.2.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.9

url pkg:composer/phpmailer/phpmailer@5.0.0

purl pkg:composer/phpmailer/phpmailer@5.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.0.0

url pkg:composer/phpmailer/phpmailer@5.2.10

purl pkg:composer/phpmailer/phpmailer@5.2.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-svc3-522y-9uce

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.10

url pkg:composer/phpmailer/phpmailer@5.2.14

purl pkg:composer/phpmailer/phpmailer@5.2.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

vulnerability	VCID-t8sg-ebwy-9yaz

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.14

url pkg:composer/phpmailer/phpmailer@5.2.18

purl pkg:composer/phpmailer/phpmailer@5.2.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1a47-cc8v-xbdu

vulnerability	VCID-1vfj-98ky-yffc

vulnerability	VCID-3p76-2t3z-kycu

vulnerability	VCID-c62f-8m1j-tkdu

vulnerability	VCID-f41k-wzub-33da

resource_url http://public2.vulnerablecode.io/packages/pkg:composer/phpmailer/phpmailer@5.2.18

References

reference_url

http://openwall.com/lists/oss-security/2016/12/28/1

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://openwall.com/lists/oss-security/2016/12/28/1

reference_url

http://packetstormsecurity.com/files/140286/PHPMailer-Remote-Code-Execution.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://packetstormsecurity.com/files/140286/PHPMailer-Remote-Code-Execution.html

reference_url

http://packetstormsecurity.com/files/140350/PHPMailer-Sendmail-Argument-Injection.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://packetstormsecurity.com/files/140350/PHPMailer-Sendmail-Argument-Injection.html

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10045

reference_id

reference_type

scores

value	0.93108
scoring_system	epss
scoring_elements	0.99799
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10045

reference_url

https://developer.joomla.org/security-centre/668-20161205-phpmailer-security-advisory.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://developer.joomla.org/security-centre/668-20161205-phpmailer-security-advisory.html

reference_url

http://seclists.org/fulldisclosure/2016/Dec/81

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://seclists.org/fulldisclosure/2016/Dec/81

reference_url

https://github.com/PHPMailer/PHPMailer

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer

reference_url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.20

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.20

reference_url

https://github.com/PHPMailer/PHPMailer/wiki/About-the-CVE-2016-10033-and-CVE-2016-10045-vulnerabilities

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/wiki/About-the-CVE-2016-10033-and-CVE-2016-10045-vulnerabilities

reference_url

https://www.exploit-db.com/exploits/40969

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/40969

reference_url

https://www.exploit-db.com/exploits/40986

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/40986

reference_url

https://www.exploit-db.com/exploits/42221

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.exploit-db.com/exploits/42221

reference_url

http://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injection

reference_url	https://security.archlinux.org/ASA-201701-22
reference_id	ASA-201701-22
reference_type
scores
url	https://security.archlinux.org/ASA-201701-22

reference_url

https://security.archlinux.org/AVG-142

reference_id

AVG-142

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-142

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2016-10045

reference_id

CVE-2016-10045

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2016-10045

reference_url

https://legalhackers.com/advisories/PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10045-Vuln-Patch-Bypass.html

reference_id

CVE-2016-10045;CVE-2016-10033

reference_type

exploit

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://legalhackers.com/advisories/PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10045-Vuln-Patch-Bypass.html

reference_url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2016-10045.yaml

reference_id

CVE-2016-10045.YAML

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/FriendsOfPHP/security-advisories/blob/master/phpmailer/phpmailer/CVE-2016-10045.yaml

reference_url	https://github.com/advisories/GHSA-4pc3-96mx-wwc8
reference_id	GHSA-4pc3-96mx-wwc8
reference_type
scores
url	https://github.com/advisories/GHSA-4pc3-96mx-wwc8

reference_url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-4pc3-96mx-wwc8

reference_id

GHSA-4pc3-96mx-wwc8

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/PHPMailer/PHPMailer/security/advisories/GHSA-4pc3-96mx-wwc8

Weaknesses

cwe_id	77
name	Improper Neutralization of Special Elements used in a Command ('Command Injection')
description	The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

date_added	`null`
description	PHPMailer versions up to and including 5.2.19 are affected by a vulnerability which can be leveraged by an attacker to write a file with partially controlled contents to an arbitrary location through injection of arguments that are passed to the sendmail binary. This module writes a payload to the web root of the webserver before then executing it with an HTTP request. The user running PHPMailer must have write access to the specified WEB_ROOT directory and successful exploitation can take a few minutes.
required_action	`null`
due_date	`null`
notes	Stability: - crash-safe SideEffects: - artifacts-on-disk - ioc-in-logs Reliability: - repeatable-session
known_ransomware_campaign_use	`false`
source_date_published	2016-12-26
exploit_type	`null`
platform	PHP
source_date_updated	`null`
data_source	Metasploit
source_url	https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/phpmailer_arg_injection.rb

date_added	2017-06-21
description	PHPMailer < 5.2.20 with Exim MTA - Remote Code Execution
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`false`
source_date_published	2017-06-21
exploit_type	webapps
platform	php
source_date_updated	2017-08-03
data_source	Exploit-DB
source_url

Severity_range_score 7.0 - 10.0

Exploitability 0.5

Weighted_severity 9.0

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f41k-wzub-33da

Vulnerability Instance