CVE-2017-11503
published 2017-07-20CVE-2017-11503: PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
PriorityP425medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
2.40%
81.9th percentile
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libphp-phpmailer | < libphp-phpmailer 6.0.6-0.1 (bookworm) | libphp-phpmailer 6.0.6-0.1 (bookworm) |
| phpmailer | phpmailer | >= 5.0.0 < 5.2.24 | 5.2.24 |
| phpmailer_project | phpmailer | — | — |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
ghsa6.1MEDIUM
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian6.1LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
libphp-phpmailer vulnerability
osv·2023-03-15·CVSS 9.8
CVE-2017-11503 [CRITICAL] libphp-phpmailer vulnerability
libphp-phpmailer vulnerability
USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the
fix for CVE-2017-11503 was incomplete. This update fixes the problem.
Original advisory details:
Dawid Golunski discovered that PHPMailer was not properly escaping user
input data used as arguments to functions executed by the system shell. An
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 16.04 ESM. (CVE-2016-10033, CVE-2016-10045)
It was discovered that PHPMailer was not properly escaping characters
in certain fields of the code_generator.php example code. An attacker
could possibly use this issue to conduct cross-site scripting (XSS)
attacks. This issue was only fixed in Ubuntu 16.04 ESM and Ubuntu 18.04
ESM. (CVE-2017-11503)
Yo
OSV
libphp-phpmailer vulnerabilities
osv·2023-03-15·CVSS 9.8
CVE-2016-10033 [CRITICAL] libphp-phpmailer vulnerabilities
libphp-phpmailer vulnerabilities
Dawid Golunski discovered that PHPMailer was not properly escaping user
input data used as arguments to functions executed by the system shell. An
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 16.04 ESM. (CVE-2016-10033, CVE-2016-10045)
It was discovered that PHPMailer was not properly escaping characters
in certain fields of the code_generator.php example code. An attacker
could possibly use this issue to conduct cross-site scripting (XSS)
attacks. This issue was only fixed in Ubuntu 16.04 ESM and Ubuntu 18.04
ESM. (CVE-2017-11503)
Yongxiang Li discovered that PHPMailer was not properly converting
relative paths provided as user input when adding attachments to messages,
which could lead to relative im
GHSA
Cross-site scripting in PHPMailer
ghsa·2020-03-05·CVSS 6.1
CVE-2017-11503 [MEDIUM] CWE-79 Cross-site scripting in PHPMailer
Cross-site scripting in PHPMailer
PHPMailer versions prior to 5.2.24 (released July 26th 2017) have an XSS vulnerability in one of the code examples, CVE-2017-11503. The code_generator.phps example did not filter user input prior to output. This file is distributed with a `.phps` extension, so it it not normally executable unless it is explicitly renamed, and the file is not included when PHPMailer is loaded through composer, so it is safe by default. There was also an undisclosed potential XSS vulnerability in the default exception handler (unused by default). Patches for both issues kindly provided by Patrick Monnerat of the Fedora Project.
### Impact
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
### Patches
Fixed in 5.2.24
OSV
Cross-site scripting in PHPMailer
osv·2020-03-05·CVSS 6.1
CVE-2017-11503 [MEDIUM] Cross-site scripting in PHPMailer
Cross-site scripting in PHPMailer
PHPMailer versions prior to 5.2.24 (released July 26th 2017) have an XSS vulnerability in one of the code examples, CVE-2017-11503. The code_generator.phps example did not filter user input prior to output. This file is distributed with a `.phps` extension, so it it not normally executable unless it is explicitly renamed, and the file is not included when PHPMailer is loaded through composer, so it is safe by default. There was also an undisclosed potential XSS vulnerability in the default exception handler (unused by default). Patches for both issues kindly provided by Patrick Monnerat of the Fedora Project.
### Impact
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
### Patches
Fixed in 5.2.24
OSV
CVE-2017-11503: PHPMailer 5
osv·2017-07-20·CVSS 6.1
CVE-2017-11503 [MEDIUM] CVE-2017-11503: PHPMailer 5
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
Ubuntu
PHPMailer vulnerabilities
vendor_ubuntu·2023-03-15·CVSS 9.8
CVE-2021-3603 [CRITICAL] PHPMailer vulnerabilities
Title: PHPMailer vulnerabilities
Summary: Several security issues were fixed in PHPMailer.
Dawid Golunski discovered that PHPMailer was not properly escaping user
input data used as arguments to functions executed by the system shell. An
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 16.04 ESM. (CVE-2016-10033, CVE-2016-10045)
It was discovered that PHPMailer was not properly escaping characters
in certain fields of the code_generator.php example code. An attacker
could possibly use this issue to conduct cross-site scripting (XSS)
attacks. This issue was only fixed in Ubuntu 16.04 ESM and Ubuntu 18.04
ESM. (CVE-2017-11503)
Yongxiang Li discovered that PHPMailer was not properly converting
relative paths provided as user input when addi
Ubuntu
PHPMailer vulnerability
vendor_ubuntu·2023-03-15·CVSS 9.8
CVE-2017-11503 [CRITICAL] PHPMailer vulnerability
Title: PHPMailer vulnerability
Summary: An incomplete fix was discovered in PHPMailer.
USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the
fix for CVE-2017-11503 was incomplete. This update fixes the problem.
Original advisory details:
Dawid Golunski discovered that PHPMailer was not properly escaping user
input data used as arguments to functions executed by the system shell. An
attacker could possibly use this issue to execute arbitrary code. This
issue only affected Ubuntu 16.04 ESM. (CVE-2016-10033, CVE-2016-10045)
It was discovered that PHPMailer was not properly escaping characters
in certain fields of the code_generator.php example code. An attacker
could possibly use this issue to conduct cross-site scripting (XSS)
attacks. This issue was only fixed in Ub
Debian
CVE-2017-11503: libphp-phpmailer - PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fiel...
vendor_debian·2017·CVSS 6.1
CVE-2017-11503 [MEDIUM] CVE-2017-11503: libphp-phpmailer - PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fiel...
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
Scope: local
bookworm: resolved (fixed in 6.0.6-0.1)
bullseye: resolved (fixed in 6.0.6-0.1)
forky: resolved (fixed in 6.0.6-0.1)
sid: resolved (fixed in 6.0.6-0.1)
trixie: resolved (fixed in 6.0.6-0.1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-11503 phpmailer: XSS in code_generator.php
bugzilla·2017-07-24·CVSS 6.1
CVE-2017-11503 [MEDIUM] CVE-2017-11503 phpmailer: XSS in code_generator.php
CVE-2017-11503 phpmailer: XSS in code_generator.php
PHPMailer 5.2.23 has XSS in the "From Email Address" and "To Email Address" fields of code_generator.php.
References:
https://packetstormsecurity.com/files/143138/phpmailer-xss.txt
https://cxsecurity.com/issue/WLB-2017060181
http://www.securityfocus.com/bid/99293/info
Discussion:
Created php-PHPMailer tracking bugs for this issue:
Affects: epel-all [bug 1474419]
Affects: fedora-all [bug 1474418]
---
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.
Bugzilla
CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [fedora-all]
bugzilla·2017-07-24·CVSS 6.1
CVE-2017-11503 [MEDIUM] CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [fedora-all]
CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versio
Bugzilla
CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [epel-all]
bugzilla·2017-07-24·CVSS 6.1
CVE-2017-11503 [MEDIUM] CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [epel-all]
CVE-2017-11503 php-PHPMailer: phpmailer: XSS in code_generator.php [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of epel-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions o
http://www.securityfocus.com/bid/99293/http://www.securitytracker.com/id/1039026https://cxsecurity.com/issue/WLB-2017060181https://packetstormsecurity.com/files/143138/phpmailer-xss.txthttps://github.com/PHPMailer/PHPMailerhttps://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.24http://www.securityfocus.com/bid/99293/http://www.securitytracker.com/id/1039026https://cxsecurity.com/issue/WLB-2017060181https://packetstormsecurity.com/files/143138/phpmailer-xss.txt
2017-07-20
Published