Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed
I received a message from my hosting provider today, stating that a file in the Mailchimp libraries directory is malicious: /public_html/sites/all/libraries/mailchimp/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php.
Q A PHPUnit version I don't know PHP version 7.1.15 Installation Method Composer I don't have phpunit in this project (wordpress site) and my vendor isn't exposed to internet, but I think that this can be a problem, what you think guys? ...
I have added google plus login to my website (hosted on shared server). While composing dependent libraries through composer.json for google login, the phpunit library was downloaded as a part.
The file eval-stdin.php was added to PHPUnit in November 2015 in order to be able to run tests in separate PHP processes even if the PHP debugger phpdbg is used instead of the regular command line interpreter (php). eval-stdin.php originally only contained a single line of PHP code
2. Написание тестов на PHPUnit. Пример 2.1 показывает, как мы можем писать тесты, используя PHPUnit, которые выполняют операции с массивом PHP. В этом примере представлены основные соглашения и шаги для написания тестов с помощью PHPUnit: Тесты для класса...
› phpunit/phpunit. The PHP Unit Testing framework. Maintainers. Details. github.com/sebastianbergmann/phpunit.
➜ ./phpunit --bootstrap src/autoload.php tests PHPUnit 6.5.5 by Sebastian Bergmann and contributors. ...
"Can not parse PHPUnit version output: Could not open input file: /var/www/vendor/phpunit/phpunit/phpunit". Why would this be? I can easily execute both `phpunit` and `vendor/bin/phpunit` from within Docker.