Описание
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | didn't get roundcube's html2text |
| devel | not-affected | 1.9.4.dfsg-0ubuntu1 |
| gutsy | ignored | end of life, was needs-triage |
| hardy | released | 1.8.2-1ubuntu4.2 |
| intrepid | released | 1.8.2-1.2ubuntu2.1 |
| jaunty | not-affected | 1.9.4.dfsg-0ubuntu1 |
| upstream | released | 1.8.2.dfsg-2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 0.1.1-10 |
| gutsy | not-affected | |
| hardy | released | 0.1~rc2-6ubuntu0.1 |
| intrepid | released | 0.1.1-7ubuntu0.1 |
| jaunty | not-affected | 0.1.1-10 |
| upstream | released | 0.1.1-9 |
Показывать по
EPSS
10 Critical
CVSS2
Связанные уязвимости
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMaile ...
EPSS
10 Critical
CVSS2