Exploit PHPMailer Remote Code Execution CVE-2016-10033

Share it with your friends Like

Thanks! Share it with your friends!


Disclaimer: This tutorial/guide for educational purpose only.

Discovered by Polish security researcher Dawid Golunski of Legal Hackers, the critical vulnerability (CVE-2016-10033) allows an attacker to remotely execute arbitrary code in the context of the web server and compromise the target web application. All versions of PHPMailer before the critical release of PHPMailer 5.2.18 are affected.

More info about this vulnerability: https://errorcybernews.com/2016/12/29/phpmailer-membuat-jutaan-website-memiliki-kerentanan/

Exploit Tool: https://github.com/opsxcq/exploit-CVE-2016-10033


Write a comment