Critical severity9.9NVD Advisory· Published Feb 16, 2022· Updated Jun 17, 2026
CVE-2022-24665
CVE-2022-24665
Description
PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via a WordPress gutenberg block by any user able to edit posts.
Affected products
2- Range: <=2.0.3
- Alexander Fuchs/PHP Everywherev5Range: 2.0.3
Patches
Vulnerability mechanics
References
1- www.wordfence.com/blog/2022/02/critical-vulnerabilities-in-php-everywhere-allow-remote-code-execution/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.