banananetwork
/
roundcubemail
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Fix vulnerability in handling of mail()'s 5th argument

Browse Source
release-1.0
Aleksander Machniak 8 years ago
parent 5d2aaa68c3
commit a54dde834c
2 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File

1
CHANGELOG
Unescape Escape View File

@ -1,6 +1,7 @@
CHANGELOG Roundcube Webmail
===========================
- Fix vulnerability in handling of mail()'s 5th argument
- Don't create multipart/alternative messages with empty text/plain part (#5283)
- Fix XSS issue in href attribute on area tag (#5240)
- Wash position:fixed style in HTML mail for better security (#5264)

2
program/lib/Roundcube/rcube.php
Unescape Escape View File

@ -1542,7 +1542,7 @@ class rcube
if (filter_var(ini_get('safe_mode'), FILTER_VALIDATE_BOOLEAN))
$sent = mail($to, $subject, $msg_body, $header_str);
else
$sent = mail($to, $subject, $msg_body, $header_str, "-f$from");
$sent = mail($to, $subject, $msg_body, $header_str, '-f ' . escapeshellarg($from));
}
}

Write Preview
Loading…
Cancel
Save