Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
- https://www.exploit-db.com/exploits/7549
- https://www.exploit-db.com/exploits/7553
- https://github.com/JamesYoungZhu/Practise
- https://github.com/allwinjoseph/icpair2
- https://github.com/clients1/mailer
- https://github.com/jatin-dwebguys/PHPMailer
- https://github.com/mitraxsou/radiant
- https://github.com/rosauceda/PHPMAILER1
- https://github.com/rosauceda/phpMail
- https://github.com/webworksinc/PHPMailer
- https://github.com/wking07/pmailer