CVE-2016-10033 PoC — PHPMailer 安全漏洞

Source

https://github.com/cved-sources/cve-2016-10033

Associated Vulnerability

Title:PHPMailer 安全漏洞 (CVE-2016-10033)
Description:PHPMailer是一个用于发送电子邮件的PHP类库。 PHPMailer 5.2.18之前的版本中的isMail transport的‘mailSend’函数存在安全漏洞，该漏洞源于程序没有设置Sender属性。远程攻击者可利用该漏洞向邮件命令中传递额外的参数，并执行任意代码。

Description

cve-2016-10033

Readme

# CVE-2016-10033

This is part of Cved: *a tool to manage vulnerable docker containers.*

Cved: https://github.com/git-rep-src/cved

Image source: https://github.com/cved-sources/cve-2016-10033

Image author: https://github.com/Medicean/VulApps/tree/master/p/phpmailer/1

File Snapshot


 [4.0K]  /data/pocs/591f155fb7a2fdfbe861703bb9960e91acccbc08
├── [4.0K]  build
│   ├── [1.4K]  index.php
│   ├── [ 256]  main.sh
│   └── [255K]  phpmailer-5.2.17.zip
├── [ 764]  Dockerfile
└── [ 271]  README.md

1 directory, 5 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!