CVE-2017-9841 PoC — PHPUnit 安全漏洞

Source

https://github.com/omgdomgd/CVE-2017-9841-Scan

Associated Vulnerability

Title:PHPUnit 安全漏洞 (CVE-2017-9841)
Description:TYPO3是瑞士TYPO3协会维护的一套免费开源的内容管理系统。PHPUnit是其中的一个基于PHP的测试框架。 PHPUnit 4.8.28之前的版本和5.6.3之前的5.x版本中的Util/PHP/eval-stdin.php文件存在安全漏洞。远程攻击者可通过发送以‘<?php’字符串开头的HTTP POST数据利用该漏洞执行任意PHP代码。

Readme

# 批量扫描多个host，使用path字典，爆破PHPunit RCE (CVE-2017-9841)漏洞的工具

##  例子
### 未指定path字典，默认走"/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php"

![image](https://user-images.githubusercontent.com/9586181/177740940-27d095d8-8bad-4051-9510-774cdb31c052.png)

### 指定path字典参数
![image](https://user-images.githubusercontent.com/9586181/177741226-61bcc9b9-d933-40ba-8821-ffc814c64d61.png)

最后扫描到存在漏洞的host会存在当前目录的found.txt


Path字典参考：https://raw.githubusercontent.com/random-robbie/bruteforce-lists/master/phpunit.txt

File Snapshot


 [4.0K]  /data/pocs/6c3b46f9e0cf1cac9f948b0b8f82add85c312fc3
├── [3.4K]  main.go
└── [ 623]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!