PHPMailer::isShellSafe

Reading time

6 Seconds to Read

Published

Join the Conversation

Leave a Comment

Advertisement

6 Seconds to Read

Summery Summery

Fix CVE-2016-10033 and CVE-2016-10045 by disallowing potentially unsafe shell characters.

Syntax Syntax

PHPMailer::isShellSafe( string $string )

Description Description

Note that escapeshellarg and escapeshellcmd are inadequate for our purposes, especially on Windows.

Related

Parameters Parameters

$string: (Required) The string to be validated

Return Return

(boolean)

Source Source

File: wp-includes/class-phpmailer.php

Advertisement

See also See also

https://github.com/PHPMailer/PHPMailer/issues/924: CVE-2016-10045 bug report

Related

Advertisement

Leave a ReplyCancel reply

Table of Content