diff options
Diffstat (limited to 'phpmailer')
| -rw-r--r-- | phpmailer/class.phpmailer.php | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/phpmailer/class.phpmailer.php b/phpmailer/class.phpmailer.php index 5eb7ac05a..061a16f47 100644 --- a/phpmailer/class.phpmailer.php +++ b/phpmailer/class.phpmailer.php @@ -390,9 +390,11 @@ class PHPMailer */
function SendmailSend($header, $body) {
if ($this->Sender != "")
- $sendmail = sprintf("%s -oi -f %s -t", $this->Sendmail, $this->Sender);
+ $sendmail = sprintf("%s -oi -f %s -t",
+ escapeshellcmd($this->Sendmail), escapeshellarg($this->Sender));
else
- $sendmail = sprintf("%s -oi -t", $this->Sendmail);
+ $sendmail = sprintf("%s -oi -t",
+ escapeshellcmd($this->Sendmail));
if(!@$mail = popen($sendmail, "w"))
{
@@ -1496,4 +1498,4 @@ class PHPMailer }
}
-?>
\ No newline at end of file +?>
|