Jump to content

PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack


cluster

Recommended Posts

my whmcs 7.10.3  shows phpmailer v 6.0.7 ...

it's not yet possible to me update to the current 8.x due to problems with some modules which are not finished right now

do you think I can replace my 7.10.3 phpmailer folder with the folder of v 8.x?

Link to comment
Share on other sites

3 hours ago, cluster said:

my whmcs 7.10.3  shows phpmailer v 6.0.7 ...

6.0.7 isn't affected by these CVEs 🙂

3 hours ago, cluster said:

do you think I can replace my 7.10.3 phpmailer folder with the folder of v 8.x?

Maybe that works. If you are forced to stay on WHMCS 7.10 and later on a security vulnerability becomes known, you can at least try that. If this does not work, it would be possible write a wrapper so that it still works (i.e. restore compatibility via custom PHP code). 

However, i wouldn't suggest that if you are not a dev. And even if you are a dev, the recommended way would be to keep WHMCS up to date. Even though I know how annoying the version cycle of WHMCS is. 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use & Guidelines and understand your posts will initially be pre-moderated