Lucene search
Veracode Vulnerability DatabaseVERACODE:4623HistoryJul 21, 2017 - 5:57 a.m.
Cross-Site Scripting (XSS)
2017-07-2105:57:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.001 Low
EPSS
Percentile
40.7%
phpMailer is vulnerable to cross-site scripting (XSS) attacks. The attacks exist because it does not properly sanitize the user supplied input to the “From Email Address” and “To Email Address” fields of code_generator.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| phpmailer/phpmailer | le | 5.2.23 |
Related
freebsd
freebsd
phpmailer -- XSS in code example and default exeception handler
2017-07-27 00:00:00
osv
osv
CVE-2017-11503
2017-07-20 23:29:00
Cross-site scripting in PHPMailer
2020-03-05 22:09:13
libphp-phpmailer vulnerabilities
2023-03-15 14:33:12
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0257)
2022-01-28 00:00:00
PHPMailer XSS Vulnerability
2017-07-27 00:00:00
Fedora Update for php-PHPMailer FEDORA-2017-f838eb0c5e
2017-08-04 00:00:00
nessus
nessus
Fedora 24 : php-PHPMailer (2017-0bc23764e7)
2017-08-11 00:00:00
Fedora 26 : php-PHPMailer (2017-ab55648aa7)
2017-08-07 00:00:00
Ubuntu 16.04 ESM / 18.04 ESM : PHPMailer vulnerability (USN-5956-2)
2023-03-15 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: php-PHPMailer-5.2.24-1.fc24
2017-08-01 19:19:59
[SECURITY] Fedora 26 Update: php-PHPMailer-5.2.24-1.fc26
2017-08-04 16:54:46
[SECURITY] Fedora 25 Update: php-PHPMailer-5.2.24-1.fc25
2017-07-28 20:51:07
cvelist
cvelist
CVE-2017-11503
2017-07-20 23:00:00
friendsofphp
friendsofphp
XSS vulnerability in code example
2017-07-26 18:02:31
mageia
mageia
Updated php-phpmailer packages fix security vulnerability
2017-08-13 16:17:41
prion
prion
Cross site scripting
2017-07-20 23:29:00
nvd
nvd
CVE-2017-11503
2017-07-20 23:29:00
github
github
Cross-site scripting in PHPMailer
2020-03-05 22:09:13
cve
cve
CVE-2017-11503
2017-07-20 23:29:00
ubuntucve
ubuntucve
CVE-2017-11503
2017-07-20 00:00:00
debiancve
debiancve
CVE-2017-11503
2017-07-20 23:29:00
ubuntu
ubuntu
PHPMailer vulnerability
2023-03-15 00:00:00
PHPMailer vulnerabilities
2023-03-15 00:00:00