CVE-2017-9841 — Actively Exploited: PHPUnit (PHPUnit)
PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., external access to the /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php URI.
| CVE ID | CVE-2017-9841 |
|---|---|
| Vendor | PHPUnit |
| Product | PHPUnit |
| Vulnerability name | PHPUnit Command Injection Vulnerability |
| Date added | 2022-02-15 |
| Remediation due | 2022-08-15 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., external access to the /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php URI. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →