Composer · packagist.org
nexphant/server
Php Base64 Eval Chain: base64/gz/hex decode combined with eval/exec/backticks — classic PHP obfuscated payload.
Why PkgRadar flagged v0.0.6
| Severity | Signal | Evidence |
|---|---|---|
| high | Php Base64 Eval Chain | base64/gz/hex decode combined with eval/exec/backticks — classic PHP obfuscated payload. · nexphant-server-458dd62/src/HttpServer.php |
| high | Php Shell With Decode | exec / system / shell_exec combined with base64/hex decode. · nexphant-server-458dd62/src/HttpServer.php |
Scanned versions
| Version | Verdict | Score | Scanned (UTC) |
|---|---|---|---|
v0.0.6 | High risk | 75 | 2026-06-20 |
v0.0.5 | Low risk | 0 | 2026-06-19 |
Block this in CI
pkgradar gate --ecosystem composer nexphant/[email protected]