Lucene search
K

14 matches found

OpenVAS
OpenVAS
added 2023/03/16 12:0 a.m.36 views

Ubuntu: Security Advisory (USN-5956-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.99714EPSS
Exploits67References4
OpenVAS
OpenVAS
added 2023/03/16 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5956-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.99714EPSS
Exploits67References2
OSV
OSV
added 2023/03/15 7:58 p.m.4 views

USN-5956-2 libphp-phpmailer vulnerability

USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the fix for CVE-2017-11503 was incomplete. This update fixes the problem. Original advisory details: Dawid Golunski discovered that PHPMailer was not properly escaping user input data used as arguments to functions executed by...

6.1CVSS7AI score0.024EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/03/15 12:0 a.m.53 views

Ubuntu 16.04 ESM / 18.04 ESM : PHPMailer vulnerability (USN-5956-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-5956-2 advisory. USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the fix for CVE-2017-11503 was incomplete. This update fixes the problem. Tenabl...

9.8CVSS7AI score0.99714EPSS
Exploits61References2
OSV
OSV
added 2020/03/05 10:9 p.m.55 views

GHSA-58MJ-PW57-4VM2 Cross-site scripting in PHPMailer

PHPMailer versions prior to 5.2.24 released July 26th 2017 have an XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it i...

6.1CVSS6.2AI score0.024EPSS
Exploits1References8
Github Security Blog
Github Security Blog
added 2020/03/05 10:9 p.m.100 views

Cross-site scripting in PHPMailer

PHPMailer versions prior to 5.2.24 released July 26th 2017 have an XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it i...

6.1CVSS0.4AI score0.024EPSS
Exploits1References9Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/08/24 12:0 a.m.44 views

FreeBSD : phpmailer -- XSS in code example and default exeception handler (c5d79773-8801-11e7-93f7-d43d7e971a1b)

PHPMailer reports : Fix XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it is explicitly renamed, so it is safe by...

6.1CVSS6.5AI score0.024EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.49 views

Fedora 24 : php-PHPMailer (2017-0bc23764e7)

Update to 5.2.24: fixes XSS vulnerability CVE-2017-11503. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

6.1CVSS6.4AI score0.024EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2017/08/07 12:0 a.m.53 views

Fedora 26 : php-PHPMailer (2017-ab55648aa7)

Update to 5.2.24: fixes XSS vulnerability CVE-2017-11503. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

6.1CVSS6.4AI score0.024EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2017/08/04 12:0 a.m.37 views

Fedora Update for php-PHPMailer FEDORA-2017-0bc23764e7

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.6AI score0.024EPSS
Exploits1References2
Friends Of PHP
Friends Of PHP
added 2017/07/26 6:2 p.m.39 views

XSS vulnerability in code example

SECURITY Fix XSS vulnerability in one of the code examples, CVE-2017-11503. The codegenerator.phps example did not filter user input prior to output. This file is distributed with a .phps extension, so it it not normally executable unless it is explicitly renamed, so it is safe by default. There...

6.1CVSS6.2AI score0.024EPSS
Exploits1Affected Software1
OSV
OSV
added 2017/07/20 11:29 p.m.3 views

DEBIAN-CVE-2017-11503

PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of codegenerator.php...

6.1CVSS6.2AI score0.024EPSS
Exploits1References1
CVE
CVE
added 2017/07/20 11:0 p.m.116 views

CVE-2017-11503

PHPMailer 5.2.x contains a cross-site scripting vulnerability tracked as CVE-2017-11503 in the code_generator.php example, where user input was not properly filtered in the From Email Address and To Email Address fields. Affected release cited: PHPMailer 5.2.23. Public references in multiple juri...

6.1CVSS6AI score0.024EPSS
Exploits1References6Affected Software1
Debian CVE
Debian CVE
added 2017/07/20 11:0 p.m.39 views

CVE-2017-11503

PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of codegenerator.php...

6.1CVSS6.3AI score0.024EPSS
Exploits1
Rows per page
Query Builder