Back to Codebase
Vulnerability Analysis Report
Drush Drush v5.0.0-rc3
Scan ID: SCAN-DRUSH-DRUSH-cs3qDH • Hash: 7cec85c7
Severity Score
Critical
Total Findings
2
Engine Version
ECOMGUARD-HYBRID-AST-1.5
Scan Duration
1.142s
Vulnerability Details
L21
Dynamic Code Execution in variableTest.php
CWE-94
File Location:
tests/variableTest.php:21
Security Score:
98 / 100
Confirmed Issue
Rule Engine Warning
Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.
Heuristics Diff
- eval($var_export);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.
L27
Dynamic Code Execution in variableTest.php
CWE-94
File Location:
tests/variableTest.php:27
Security Score:
96 / 100
Confirmed Issue
Rule Engine Warning
Detected insecure pattern matching known vulnerability signatures. High Severity (Confirmed via full AST flow control tracing). Please apply remediation steps matching the recommended patch format below.
Heuristics Diff
- eval($var_export);
+ // Avoid dynamic function/code evaluation. Rewrite with native callbacks.