Description PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack. Remediation References CVE-2018-19296 Related Vulnerabilities WordPress Plugin SagePay Server Gateway for WooCommerce Cross-Site Scripting (1.0.8) Oracle JRE CVE-2013-2447 Vulnerability (CVE-2013-2447) MySQL CVE-2016-0616 Vulnerability (CVE-2016-0616) MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2006-0369) SharePoint CVE-2020-1523 Vulnerability (CVE-2020-1523) Severity High Classification CVE-2018-19296 CWE-502 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities