Vulnerability detail
Enriched intelligence for a single CVE
Critical
CVE-2017-9841
PUBLISHEDUtil/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP code via HTTP POST data...
- Vendor
- PHPUnit
- Product
- PHPUnit
- Published
- Jun 27, 2017
- EPSS
- —
Description
Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "
CVSS scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitation status
Exploited in the wild
Recorded 2022-02-15 00:00:00 UTC · Source
SSVC decision points
- Exploitation
- active
- Automatable
- Yes
- Technical impact
- total
References
- http://www.securityfocus.com/bid/101798
- http://www.securitytracker.com/id/1039812
- https://security.gentoo.org/glsa/201711-15
- https://www.oracle.com/security-alerts/cpuoct2021.html
- https://github.com/sebastianbergmann/phpunit/commit/284a69fb88a2d0845d23f42974a583d8f59bf5a5
- https://github.com/sebastianbergmann/phpunit/pull/1956
- http://web.archive.org/web/20170701212357/http://phpunit.vulnbusters.com/
Known exploited vulnerability sources
Catalogues that list this CVE as a known exploited vulnerability.
| Source | Added |
|---|---|
| CISA | Feb 15, 2022 |
Scanner integrations
| Scanner | Reference | Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2017/CVE-2017-9841.yaml | Apr 25, 2025 |
Potential proof of concepts
These PoCs are unverified and could contain malware. Use at your own risk.
github · Created 2023-03-13 07:42:32 UTC · 4 stars
A Tool for scanning CVE-2017-9841 with multithread
github · Created 2022-04-20 07:01:20 UTC · 0 stars
CVE-2017-9841批量扫描及利用脚本。PHPUnit是其中的一个基于PHP的测试框架。 PHPUnit 4.8.28之前的版本和5.6.3之前的5.x版本中的Util/PHP/eval-stdin.php文件存在安全漏洞。远程攻击者可通过发送以‘<?php’字符串开头的HTTP POST数据利用该漏洞执行任意PHP代码。
github · Created 2022-04-09 11:12:58 UTC · 2 stars
phpunit-shell | CVE_2017-9841
github · Created 2022-03-20 07:01:52 UTC · 2 stars
RCE exploit for PHP Unit 5.6.2
github · Created 2020-06-24 09:37:04 UTC · 0 stars
github · Created 2020-01-06 23:27:15 UTC · 0 stars
CVE-2017-9841 detector script
Timeline
-
CVE ID Reserved
-
CVE Published to Public
-
Added to KEVIntel
-
Detected by Nuclei