Summery Summery
Fix CVE-2016-10033 and CVE-2016-10045 by disallowing potentially unsafe shell characters.
Syntax Syntax
Description Description
Note that escapeshellarg and escapeshellcmd are inadequate for our purposes, especially on Windows.
Parameters Parameters
- $string
-
(Required) The string to be validated
Return Return
(boolean)
Source Source
File: wp-includes/class-phpmailer.php
Advertisement
See also See also
- https://github.com/PHPMailer/PHPMailer/issues/924: CVE-2016-10045 bug report