[wp-trac] [WordPress Trac] #54739: Upgrade PHPMailer to 5.2.27 for WordPress < 5.3 (and to 6.5.3 for above 5.4)
WordPress Trac
noreply at wordpress.org
Wed Jan 19 13:18:43 UTC 2022
#54739: Upgrade PHPMailer to 5.2.27 for WordPress < 5.3 (and to 6.5.3 for above
5.4)
--------------------------------------+------------------------------
Reporter: zodiac1978 | Owner: (none)
Type: defect (bug) | Status: new
Priority: normal | Milestone: Awaiting Review
Component: External Libraries | Version:
Severity: normal | Resolution:
Keywords: needs-patch dev-feedback | Focuses:
--------------------------------------+------------------------------
Changes (by zodiac1978):
* severity: critical => normal
Comment:
It looks like this was coming from not updated form plugins and the
PHPMailer was just disabled because it was the last item in the chain. Not
the reason itself. Therefore changing back to "normal".
CVE-2021-34551 is just a problem on Windows and CVE-2021-3603 needs
another Remote Code Injection to be used (although both could be fixed
nevertheless).
--
Ticket URL: <https://core.trac.wordpress.org/ticket/54739#comment:6>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list