PHP code injection is a vulnerability that allows an attacker to inject custom code into the server side
scripting engine. This attack will only work on web servers that use PHP as the base technology. This
vulnerability occurs when a hacker can control part of an input string that is fed into an eval() function
call. Eval() will execute the argument as code.
WebSafe will test for PHP Code Injection attacks:
By performing a set of harmless PHP command through the website we can determine if the website is vulnerable.