Pre-release

PHPMailer 6.0.0rc4

@Synchro Synchro released this Jan 9, 2017 · 2 commits to 6.0 since this release

  • Migrate recent security fixes from master for CVE-2016-10033, CVE-2016-10045, CVE-2017-5223
  • Add more tests for line break formats
  • Remove unused LE property.

Downloads

Latest release

PHPMailer 5.2.22

@Synchro Synchro released this Jan 9, 2017 · 1 commit to master since this release

  • SECURITY Fix CVE-2017-5223, local file disclosure vulnerability if content passed to msgHTML() is sourced from unfiltered user input. Reported by Yongxiang Li of Asiasecurity. The fix for this means that calls to msgHTML() without a $basedir will not import images with relative URLs, and relative URLs containing .. will be ignored.
  • Add simple contact form example
  • Emoji in test content

Downloads

PHPMailer 5.2.21

@Synchro Synchro released this Dec 28, 2016 · 13 commits to master since this release

Fix missed number update in version file - no functional changes

Downloads

PHPMailer 5.2.20

@Synchro Synchro released this Dec 28, 2016 · 15 commits to master since this release

Important security update!

This release patches the critical vulnerability described in CVE-2016-10045 a remote code execution vulnerability, responsibly reported by Dawid Golunski, and patched by Paul Buonopane (@Zenexer).

Possible side effect - complex sender addresses (such as those used in VERP addressing) may no longer work. We advise switching to the SMTP transport if you need that functionality, and it offers higher performance anyway.

Please update your systems as soon as possible.

Additional notes on this incident are available in the PHPMailer wiki.

Note that the vulnerability described in here likely affects many other projects in a similar way, so please practice responsible disclosure, and help project maintainers fix security issues.

Downloads

PHPMailer 5.2.19

@Synchro Synchro released this Dec 26, 2016 · 22 commits to master since this release

Minor cleanup

  • Fix broken version constant
  • Remove duplicate check for Sender address

If you are running any version of PHPMailer prior to 5.2.18, you should update as soon as possible.

Downloads

PHPMailer 5.2.18

@Synchro Synchro released this Dec 24, 2016 · 23 commits to master since this release

  • SECURITY Critical security update for CVE-2016-10033 please update now! Thanks to Dawid Golunski.
  • Add ability to extract the SMTP transaction ID from some common SMTP success messages
  • Minor documentation tweaks

Downloads

Pre-release

PHPMailer 6.0.0rc3

@Synchro Synchro released this Dec 9, 2016 · 40 commits to 6.0 since this release

Hopefully the last release candidate. Breaks a few more things - more use of constants, last few changes from master merged in.

Downloads

PHPMailer 5.2.17

@Synchro Synchro released this Dec 9, 2016 · 33 commits to master since this release

A maintenance update with a few minor feature additions.

This is officially the last feature release of the 5.2.x line. Security fixes only from now on; use PHPMailer 6.0!

  • Added ability to extract SMTP transaction ID from successful submissions
  • Allow DKIM private key to be provided as a string
  • Provide mechanism to allow overriding of boundary and message ID creation
  • Improve Brazilian Portuguese, Spanish, Swedish, Romanian, and German translations
  • PHP 7.1 support for Travis-CI
  • Fix some language codes
  • Add security notices
  • Improve DKIM compatibility in older PHP versions
  • Improve trapping and capture of SMTP connection errors
  • Improve passthrough of error levels for debug output

Downloads

PHPMailer 5.2.16

@Synchro Synchro released this Jun 6, 2016 · 81 commits to master since this release

A minor maintenance release

  • Added DKIM example
  • Fixed empty additional_parameters problem
  • Fixed wrong version number in VERSION file!
  • Improve line-length tests
  • Use instance settings in smtpConnect by default
  • Use more secure auth mechanisms first

Downloads

PHPMailer 6.0.0rc2

@Synchro Synchro released this May 10, 2016 · 153 commits to 6.0 since this release

Some minor tweaks and late features merged in from 5.2. Please test and report any issues. See #710

Downloads