From b115fe5b74ce08c2979b74d53a0d5f07ccfa03f8 Mon Sep 17 00:00:00 2001
From: santii-git
Date: Wed, 21 Jan 2026 12:02:40 -0300
Subject: Update default.rules

Set the correct PHP versions for each rule and add the mb_send_mail function.---
 config/default.rules | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

(limited to 'config/default.rules')

diff --git a/config/default.rules b/config/default.rules
index c528191..3e82ae3 100644
--- a/config/default.rules
+++ b/config/default.rules
@@ -45,10 +45,12 @@ sp.cookie.name("PHPSESSID").samesite("lax");
 @end_condition;
 
 # Prevent various `mail`-related vulnerabilities
-@condition PHP_VERSION_ID < 80300;
-sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();
-@condition PHP_VERSION_ID >= 80300;
-sp.disable_function.function("mail").param("additional_params").value_r("\\-").drop();
+@condition PHP_VERSION_ID < 80000;
+    sp.disable_function.function("mail").param("additional_parameters").value_r("\\-").drop();
+    sp.disable_function.function("mb_send_mail").param("additional_parameters").value_r("\\-").drop();
+@condition PHP_VERSION_ID >= 80000;
+    sp.disable_function.function("mail").param("additional_params").value_r("\\-").drop();
+    sp.disable_function.function("mb_send_mail").param("additional_params").value_r("\\-").drop();
 @end_condition;
 
 # Since it's now burned, me might as well mitigate it publicly
-- 
cgit v1.3