Bug#429191: flyspray phpmailer: not relevant for stable

On Sun Jun 17, 2007 at 18:20:01 +0200, Thijs Kinkhorst wrote: > For stable I've checked whether it's > vulnerable and I believe it's not: the vulnerability is in the SendmailSend() > function. That requires for the calling code to actually use the sendmail > method, which Flyspray does not allo

Bug#429191: flyspray phpmailer: not relevant for stable

Hi all, > A security bug has been discovered in PHPMailer: > | PHPMailer 1.7, when configured to use sendmail, allows remote > | attackers to execute arbitrary shell commands via shell metacharacters > | in the SendmailSend function in class.phpmailer.php > >