Php Everywhere

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:alexander_fuchs:php_everywhere:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAlexander Fuchs (161e8b04-331e-5532-824f-4c95a704d0f5)
ProductPhp Everywhere (61aad84b-c3e4-5b29-827a-2b32780a299a)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2022-24665 vulnerable 2026-06-08 05:41:01.159823 Remote Code Execution by by Contributor+ users via WordPress gutenberg block
CRITICAL (9.9)
PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via a WordPress gutenberg block by any user able to edit posts.
Published: 2022-02-16T16:38:06.000Z
Updated: 2025-01-31T19:03:33.129Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-24664 vulnerable 2026-06-08 05:41:01.159349 Remote Code Execution by by Contributor+ users via WordPress metabox
CRITICAL (9.9)
PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress metaboxes, which could be used by any user able to edit posts.
Published: 2022-02-16T16:38:04.000Z
Updated: 2025-01-31T19:04:38.582Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2022-24663 vulnerable 2026-06-08 05:41:01.157889 Remote Code Execution by Subscriber+ users via WordPress shortcode
CRITICAL (9.9)
PHP Everywhere <= 2.0.3 included functionality that allowed execution of PHP Code Snippets via WordPress shortcodes, which can be used by any authenticated user.
Published: 2022-02-16T16:38:06.000Z
Updated: 2025-01-31T19:03:55.153Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.