Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7336
HistoryAug 21, 2018 - 6:07 a.m.

Arbitrary Code Execution

2018-08-2106:07:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6

0.05 Low

EPSS

Percentile

92.9%

phpwhois/phpwhois is vulnerable to arbitrary code execution attacks. The application unsafely uses the PH function eval, allowing a malicious user to inject and execute arbitrary PHP code through it.

CPENameOperatorVersion
phpwhois/phpwhoisle4.2.5

0.05 Low

EPSS

Percentile

92.9%