CVE-2016-6175
The vulnerability CVE-2016-6175 affects php-gettext up to version 1.0.12, where eval injection in the plural forms header allows remote attackers to execute arbitrary PHP code. Exploitation is evidenced by an in-the-wild exploit (Exploit-DB entry) and multiple security feeds. The issue is caused ...