[MEDIUM] code injection in `Wrapper::buildClientWrapperCode` via manipulation of the `$client` argument

PKSA-tk5q-fn3c-7qhz GHSA-q7qq-9gx2-ggxv

Affected package: phpxmlrpc/phpxmlrpc

Affected version: <4.9.0

Reported by:
GitHub, FriendsOfPHP/security-advisories