[MEDIUM] XML-RPC for PHP's `Wrapper::buildClientWrapperCode` method allows code injection via malicious `$client` argument

PKSA-pff1-8v8x-9rx5 GHSA-7vcx-v65q-9wpg

Affected package: phpxmlrpc/phpxmlrpc

Affected version: <4.9.0

Reported by:
GitHub