composer›theonedemon/phpwhois›CVE-2015-52439.8 CRITICALCode InjectionphpWhois allows remote attackers to execute arbitrary code via a crafted whois record.