CVE-2017-9841 PoC — PHPUnit 安全漏洞

Source

https://github.com/MadExploits/PHPunit-Exploit

Associated Vulnerability

Title:PHPUnit 安全漏洞 (CVE-2017-9841)
Description:TYPO3是瑞士TYPO3协会维护的一套免费开源的内容管理系统。PHPUnit是其中的一个基于PHP的测试框架。 PHPUnit 4.8.28之前的版本和5.6.3之前的5.x版本中的Util/PHP/eval-stdin.php文件存在安全漏洞。远程攻击者可通过发送以‘<?php’字符串开头的HTTP POST数据利用该漏洞执行任意PHP代码。

Description

PHPunit Checker CVE-2017-9841 By MrMad

Readme

<div align="center"><samp><h1>PHPunit Exploiter + Checker > CVE-2017-9841</h1></samp></div>

<b> Overview : </b>
<samp>PHPUnit is a unit test framework for the PHP programming language. This is a sample xUnit architecture for a unit testing framework that originated with SUnit and became popular with JUnit. PHPUnit was created by Sebastian Bergmann
</samp>


# Installation
```
python3 -m pip install -r requirements.txt
```

# Image
<img src="https://raw.githubusercontent.com/MadExploits/PHPunit-Exploit/main/Screenshot%20from%202023-01-23%2022-04-16.png" style="widht:100%;">

File Snapshot


 [4.0K]  /data/pocs/cf7dfedcc005924be7e860c635fa58ed9ea381ac
├── [ 11K]  phpunit.py
├── [ 581]  README.md
├── [  52]  requirements.txt
└── [1.2M]  Screenshot from 2023-01-23 22-04-16.png

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!