Description PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack. Remediation References CVE-2018-19296 Related Vulnerabilities WordPress Plugin Dbox 3D Slider Lite SQL Injection (1.2.2) WordPress Plugin WP REST API (WP API) Cross-Site Request Forgery (1.1) PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-1914) MySQL CVE-2015-4730 Vulnerability (CVE-2015-4730) WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder Unspecified Vulnerability (1.7.56) Severity High Classification CVE-2018-19296 CWE-502 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities