Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PEAR is Vulnerable to PHP Code Execution via preg_replace /e in Bug Update Emails
Vulnerability Description
PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, use of preg_replace() with the /e modifier in bug update email handling can enable PHP code execution if attacker-controlled content reaches the evaluated replacement. This issue has been patched in version 1.33.0.
CVSS Information
N/A
Vulnerability Type
可执行体正则表达式错误
Vulnerability Title
pearweb 安全漏洞
Vulnerability Description
pearweb是PEAR开源的一个 PHP 扩展和应用程序存储库。 pearweb 1.33.0之前版本存在安全漏洞,该漏洞源于在错误更新电子邮件处理中使用带/e修饰符的preg_replace函数,可能导致PHP代码执行。
CVSS Information
N/A
Vulnerability Type
N/A