CVE-2006-5734

描述

### Impact Arbitrary local file inclusion via the `$lang` property, remotely exploitable if host application passes unfiltered user data into that property. The 3 CVEs listed are applications that used PHPMailer that were vulnerable to this problem. ### Patches It's not known exactly when this was fixed in the host applications, but it was fixed in PHPMailer 5.2.0. ### Workarounds Filter and validate user-supplied data before use. ### References https://nvd.nist.gov/vuln/detail/CVE-2006-5734 https://nvd.nist.gov/vuln/detail/CVE-2007-3215 https://nvd.nist.gov/vuln/detail/CVE-2007-2021 Example exploit: https://www.exploit-db.com/exploits/14893 ### For more information If you have any questions or comments about this advisory: * Open a private issue in [the PHPMailer project](https://github.com/PHPMailer/PHPMailer)

如何修補 CVE-2006-5734

要修補 CVE-2006-5734,請將受影響套件升級到下列已修補版本。

• —升級至 5.2.0 或更新版本

CVE-2006-5734 正在被利用嗎?

低 — EPSS 為 0.7%,目前沒有觀察到大規模利用活動。

受影響套件(1)

• from 0, < 5.2.0

參考連結(2)

• PATCHgithub.com/PHPMailer/PHPMailer
• WEBgithub.com/PHPMailer/PHPMailer/security/advisories/GHSA-8jc3-5p29-qgjx