Back to Codebase
Vulnerability Analysis Report
Drush Drush v5.0.0-rc5
Scan ID: SCAN-DRUSH-DRUSH-07GwkQ • Hash: a6bb4faa
Severity Score
Critical
Total Findings
2
Engine Version
ECOMGUARD-HYBRID-AST-1.5
Scan Duration
1.054s
Vulnerability Details
L21
Dynamic Code Execution in variableTest.php
CWE-94
File Location:
tests/variableTest.php:21
Security Score:
98 / 100
Confirmed Issue
Rule Engine Warning
Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.
Heuristics Diff
- eval($var_export);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L27
Dynamic Code Execution in variableTest.php
CWE-94
File Location:
tests/variableTest.php:27
Security Score:
96 / 100
Confirmed Issue
Rule Engine Warning
Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.
Heuristics Diff
- eval($var_export);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.