CVE-2023-52262

Name of the Vulnerable Software and Affected Versions outdoorbits little-backup-box versions prior to f39f91c

Description The issue allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input. This is due to insufficient validation of input data.

Recommendations For versions prior to f39f91c, update to a version after f39f91c to resolve the issue. As a temporary workaround, consider disabling the use of the PHP extract function for untrusted input until a patch is available. Restrict access to the affected software to minimize the risk of exploitation.