CVE-2017-9841

This repository contains a Python script that brute-forces paths to exploit CVE-2017-9841, a PHPUnit RCE vulnerability. It tests multiple paths to locate the vulnerable `eval-stdin.php` file and logs successful findings.

This repository contains a mass scanner for CVE-2017-9841, a remote code execution vulnerability in Laravel's PHPUnit configuration. The tool checks for the presence of the vulnerable endpoint and attempts to execute a simple PHP payload to verify exploitation.

This repository contains a functional exploit for CVE-2017-9841, targeting PHPUnit's `eval-stdin.php` RCE vulnerability. It includes both a mass scanner and an interactive shell for exploitation.

This repository contains a Python script that scans for the presence of CVE-2017-9841, a remote code execution vulnerability in PHPUnit. The script checks multiple common paths for the vulnerable `eval-stdin.php` file and verifies the vulnerability by sending a test payload.

This repository contains a Python-based exploit for CVE-2017-9841, targeting PHPUnit's deserialization vulnerability. The exploit uses obfuscated code to generate a malicious payload for remote code execution (RCE).

This Go-based exploit targets CVE-2017-9841, a PHPUnit RCE vulnerability. It checks for exposed eval-stdin.php files and provides an interactive shell for command execution.

This repository contains a Python-based scanner for CVE-2017-9841, which exploits a PHPUnit RCE vulnerability by checking for the presence of vulnerable `eval-stdin.php` files in common web application paths. It uses multithreading to test multiple domains for vulnerability.

This is a multithreaded Go scanner for detecting vulnerable PHPUnit eval-stdin.php endpoints (CVE-2017-9841). It tests multiple common paths and verifies vulnerability by checking for a specific MD5 hash response.

This PoC exploits CVE-2017-9841, a remote code execution vulnerability in PHPUnit 5.6.2, by sending arbitrary commands to an exposed eval-stdin.php endpoint. The script allows interactive command execution on the target system.

This repository contains a Python3 script that exploits CVE-2017-9841, a remote code execution vulnerability in PHPUnit before 4.8.28 and 5.x before 5.6.3. The script sends a POST request to the target with user-supplied system commands.

This repository contains a Flask-based PoC for CVE-2017-9841, which exploits a PHP code execution vulnerability in PHPUnit's eval-stdin.php. The exploit sends a POST request with a PHP payload to execute arbitrary commands (e.g., 'id') on the target server.

This is a multi-threaded scanner for CVE-2017-9841, which targets PHPUnit's eval-stdin.php file for potential RCE. It checks multiple common paths and verifies vulnerability by sending a PHP payload to execute an MD5 hash check.

This Ruby script automates the exploitation of CVE-2017-9841, a remote code execution vulnerability in outdated eval-stdin.php. It provides an interactive shell to execute commands, check connections, run privilege escalation scripts, and spawn reverse shells.

This repository contains a Python script for exploiting CVE-2017-9841, a PHP code execution vulnerability in PHPUnit. It includes both a scanner for detecting vulnerable endpoints and an RCE module for executing arbitrary commands.

This repository provides a writeup and vulnerability details for CVE-2017-9841, a remote code execution vulnerability in PHPUnit. The vulnerability arises from an unsafe `eval` usage in `eval-stdin.php`, which can be exploited if the file is accessible via web requests.

This repository provides a detailed technical analysis of CVE-2017-9841, a critical RCE vulnerability in PHPUnit. It explains the root cause (exposed eval-stdin.php file), exploitation method (POST requests with PHP code), and mitigation steps.

This repository contains a Python script that scans for vulnerable paths to exploit CVE-2017-9841, a PHPUnit RCE vulnerability. It brute-forces common paths and logs successful hits but does not include a full exploit payload.

This repository contains a bash script to detect vulnerable versions of PHPUnit (CVE-2017-9841) in web applications like PrestaShop and WordPress. It scans for PHPUnit directories and checks version numbers against known vulnerable ranges.

This repository contains a Python-based scanner for detecting CVE-2017-9841, a PHPUnit RCE vulnerability. It checks multiple common paths for the vulnerable `eval-stdin.php` file and verifies exploitation by sending a crafted PHP payload to check for a specific MD5 hash in the response.

This exploit targets CVE-2017-9841, a remote code execution vulnerability in PHPUnit 4.8.28. It checks for the presence of the vulnerable `eval-stdin.php` file and allows arbitrary command execution via HTTP requests.