Sandhjé Bouw

1 exploit Active since Jul 2021
CVE-2021-30124 WRITEUP CRITICAL WRITEUP
vscode-phpmd < 1.3.0 - Remote Code Execution via Crafted phpmd.command Value
The unofficial vscode-phpmd (aka PHP Mess Detector) extension before 1.3.0 for Visual Studio Code allows remote attackers to execute arbitrary code via a crafted phpmd.command value in a workspace folder.
CVSS 9.8