CVE-2019-11043

This Metasploit module exploits CVE-2019-11043, an underflow vulnerability in PHP-FPM (versions 7.1.x < 7.1.33, 7.2.x < 7.2.24, 7.3.x < 7.3.11) when used with Nginx. It detects vulnerable configurations by manipulating query string and header lengths, then executes arbitrary commands via PHP INI directives.

This is a Go-based exploit for CVE-2019-11043, targeting a buffer underflow in php-fpm when combined with specific nginx configurations. It allows remote code execution by manipulating PATH_INFO and FastCGI parameters.

This repository contains a functional exploit for CVE-2019-11043, a vulnerability in php-fpm that allows remote code execution under specific nginx configurations. The exploit leverages a buffer underflow in php-fpm to manipulate environment variables and execute arbitrary commands.

This repository contains a functional Python exploit for CVE-2019-11043, a vulnerability in PHP-FPM that allows remote code execution (RCE) via crafted HTTP headers. The exploit leverages a buffer overflow in the PHP-FPM process to inject malicious PHP settings and achieve command execution.

This repository contains a functional exploit for CVE-2019-11043, a remote code execution vulnerability in php-fpm when used with Nginx. The exploit leverages the phuip-fpizdam tool to trigger the vulnerability by manipulating environment variables and path info in PHP-FPM configurations.

This repository provides a Dockerized environment with a vulnerable PHP-FPM (7.3.9) and nginx setup to demonstrate CVE-2019-11043, a remote code execution vulnerability. It includes a minimal PHP script and references an external exploit tool (`phuip-fpizdam`) to trigger the vulnerability.

The repository contains a Python script that scans for CVE-2019-11043, a PHP-FPM remote code execution vulnerability, by sending crafted requests to detect the presence of the vulnerability. It does not include exploit code for achieving RCE but confirms vulnerability by checking for a 502 status code response.

This repository contains a functional Python exploit for CVE-2019-11043, which leverages a buffer overflow in PHP-FPM when combined with NGINX due to improper handling of newline characters in the `fastcgi_split_path_info` directive. The exploit achieves remote code execution by manipulating the `PATH_INFO` variable to overwrite FastCGI protocol data and inject malicious PHP configurations.

This repository contains a functional exploit for CVE-2019-11043, a PHP-FPM remote code execution vulnerability. The exploit leverages environment variable injection via malformed HTTP headers to achieve RCE on vulnerable PHP versions.

This repository provides a Dockerized scanner for CVE-2019-11043, a PHP-FPM buffer overflow vulnerability. It uses the 'phuip-fpizdam' tool to detect and exploit the vulnerability by sending crafted requests to determine if a target is vulnerable.

This repository contains a functional Python exploit for CVE-2019-11043, a remote code execution vulnerability in PHP-FPM. The exploit leverages a buffer overflow in the PHP-FPM environment variable handling to achieve RCE by manipulating query string lengths and headers.

This repository contains a functional Python exploit for CVE-2019-11043, a PHP-FPM remote code execution vulnerability. The exploit leverages a buffer underflow caused by incorrect parsing of newline characters in URIs to overwrite internal PHP variables and execute arbitrary shell code.

The repository contains a Python script that scans for CVE-2019-11043 by detecting vulnerable QSL (Query String Length) values in Nginx + PHP-FPM configurations. It does not include exploit code for remote code execution but identifies potential vulnerabilities by triggering a 502 status code.

This repository contains a functional exploit for CVE-2019-11043, a vulnerability in php-fpm that allows remote code execution under specific nginx configurations. The exploit manipulates PATH_INFO and php.ini settings to achieve command execution.

This repository provides a detailed technical analysis of CVE-2019-11043, a vulnerability in PHP-FPM that allows remote code execution due to improper validation of path_info. It includes environment setup instructions, exploitation steps using the 'phuip-fpizdam' tool, and a root cause analysis involving arithmetic underflow in the _fcgi_data_seg structure.

This repository contains a functional exploit for CVE-2019-11043, a PHP-FPM remote code execution vulnerability. The exploit leverages environment variable injection via malformed HTTP headers to manipulate PHP configurations and achieve arbitrary code execution.

This repository contains a functional exploit for CVE-2019-11043, which targets a PHP-FPM vulnerability involving insecure pointer arithmetic. The exploit automates the process of finding the Query String Length (QSL) and header length, then sends a crafted payload to achieve remote code execution (RCE) on vulnerable PHP servers.

This repository provides a Dockerized environment for exploiting CVE-2019-11043, a PHP-FPM remote code execution vulnerability. It includes a preconfigured PHP-FPM and Nginx setup with debugging capabilities via gdbserver.

This repository contains a functional exploit for CVE-2019-11043, a remote code execution vulnerability in PHP-FPM when used with specific Nginx configurations. The exploit leverages a buffer underflow in PHP-FPM's handling of PATH_INFO when manipulated via crafted HTTP requests.

This repository contains a functional PoC for CVE-2019-11043, a PHP-FPM remote code execution vulnerability. The exploit leverages malformed HTTP headers and query strings to trigger arbitrary command execution in vulnerable PHP-FPM configurations.

The repository contains a functional Python exploit for CVE-2019-11043, which targets a PHP-FPM buffer overflow vulnerability in Nginx configurations. The exploit sends a crafted HTTP request with a malicious User-Agent header to achieve remote code execution.

This repository contains a functional exploit for CVE-2019-11043, targeting a vulnerability in php-fpm when used with specific nginx configurations. The exploit achieves remote code execution by manipulating PATH_INFO and FastCGI parameters.

This repository contains a Python port of the ExploitDB PoC for CVE-2019-11043, targeting PHP-FPM with a crafted request to achieve remote code execution (RCE). The script includes detection methods and parameter brute-forcing to exploit the vulnerability.

This repository provides a detailed technical analysis and demonstration of CVE-2019-11043, a PHP-FPM path handling vulnerability leading to remote code execution. It includes logs, disk images, and configuration files but lacks functional exploit code.

This repository provides a Dockerized lab environment for CVE-2019-11043, an Nginx/PHP-FPM RCE vulnerability. It includes a vulnerable Nginx configuration, PHP-FPM setup, and a minimal PHP application to demonstrate the exploit. The README provides detailed instructions for building, running, and exploiting the vulnerability using the `phuip-fpizdam` tool.

This Python script exploits CVE-2019-11043 by injecting commands into the User-Agentt header, leveraging a command injection vulnerability in PHP's nginx configuration. It provides an interactive shell for executing arbitrary commands on the target system.

The repository contains a Python script that checks for the presence of CVE-2019-11043 by sending crafted HTTP requests to detect vulnerable PHP-FPM configurations. It does not include a full exploit but scans for potential vulnerabilities.

This repository contains a functional Python script that exploits CVE-2019-11043, a buffer overflow vulnerability in PHP-FPM. The exploit manipulates HTTP headers and URL lengths to trigger remote code execution by poisoning environment variables.

The repository describes CVE-2019-11043, a vulnerability in Nginx with php-fpm where a crafted request with %0a can lead to remote code execution due to improper handling of PATH_INFO. It includes mitigation steps and mentions the existence of exploit code but does not provide it directly.

The repository contains only a README with links to external resources (PHP bug tracker and GitHub repo) but no actual exploit code or technical details. This is characteristic of a social engineering lure.

This Metasploit module exploits CVE-2019-11043, an underflow vulnerability in PHP-FPM (versions 7.1.x < 7.1.33, 7.2.x < 7.2.24, 7.3.x < 7.3.11) when used with Nginx. It detects vulnerable configurations, executes arbitrary commands via crafted HTTP requests, and cleans up artifacts.