Critical severity9.8NVD Advisory· Published Feb 7, 2017· Updated May 13, 2026

CVE-2016-6175

Description

Eval injection vulnerability in php-gettext 1.0.12 and earlier allows remote attackers to execute arbitrary PHP code via a crafted plural forms header.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugs.launchpad.net/php-gettext/+bug/1606184nvd
github.com/NagVis/nagvis/commit/4fe8672a5aec3467da72b5852ca6d283c15adb53nvd
kmkz-web-blog.blogspot.cz/2016/07/advisory-cve-2016-6175.htmlnvd
www.exploit-db.com/exploits/40154/nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.009
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000