Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2017-9841 PoC — PHPUnit 安全漏洞

Source
https://github.com/yoloskr/CVE-2017-9841-Scan
Associated Vulnerability
Title:PHPUnit 安全漏洞 (CVE-2017-9841)
Description:Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., external access to the /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php URI.
Readme
# 批量扫描多个host,使用path字典,爆破PHPunit RCE (CVE-2017-9841)漏洞的工具

##  例子
### 未指定path字典,默认走"/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"

![image](https://user-images.githubusercontent.com/9586181/177740940-27d095d8-8bad-4051-9510-774cdb31c052.png)

### 指定path字典参数
![image](https://user-images.githubusercontent.com/9586181/177741226-61bcc9b9-d933-40ba-8821-ffc814c64d61.png)

最后扫描到存在漏洞的host会存在当前目录的found.txt


Path字典参考:https://raw.githubusercontent.com/random-robbie/bruteforce-lists/master/phpunit.txt
File Snapshot

 [4.0K]  /data/pocs/ca50736ff7bf7be7a2b83e39dc956fef854b5343
├── [3.4K]  main.go
└── [ 623]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →