← Back to Search

PHPUnit

2022-02-15 · Severity 5/10 — Medium · Supply_chain
Incident Summary

PHPUnit allows remote attackers to execute arbitrary PHP code via HTTP POST data beginning with a "<?php " substring, as demonstrated by an attack on a site with an exposed /vendor folder, i.e., exter

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2022-02-15
Related Breaches

No related breaches in the last 90 days.