CVE-2024-4577

This exploit leverages CVE-2024-4577, a PHP CGI argument injection vulnerability, to achieve remote code execution by manipulating command-line arguments and bypassing security restrictions. It includes functionality for vulnerability checking, command execution, and an interactive shell.

This repository contains a functional Python exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting Windows systems. The exploit sends a crafted HTTP POST request to execute arbitrary PHP code, demonstrated by launching 'calc.exe' via system command injection.

The repository contains a functional exploit for CVE-2024-4577, leveraging PHP-CGI misconfiguration (cgi.force_redirect + REDIRECT-STATUS) to achieve RCE. It includes two exploitation methods: one using FastCGI protocol communication and another via SSRF with data:// protocol.

The repository contains Go and Python scripts that test for CVE-2024-4577 by sending crafted HTTP requests to PHP CGI endpoints and checking responses for indicators of vulnerability. The scripts do not execute arbitrary commands but detect potential exposure to the argument injection flaw.

This repository contains a functional exploit for CVE-2024-4577, a PHP-CGI argument injection vulnerability. The exploit manipulates PHP INI settings via query parameters to achieve remote code execution by setting `allow_url_include` and `auto_prepend_file` to execute arbitrary PHP code from input.

This repository contains a functional exploit tool for CVE-2024-4577 and CVE-2024-8926, targeting PHP-CGI parameter injection vulnerabilities. It includes multiple bypass modules for WAF evasion, Tor support, and various exploitation modes such as command execution, file upload/download, and PHP code execution.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability. The exploit includes multi-threaded scanning, automatic path detection, and an interactive shell for vulnerable targets.

The repository contains functional exploit code in Go, Python, and Bash for CVE-2024-4577, a PHP-CGI argument injection vulnerability allowing remote code execution via manipulated query parameters. The scripts test for vulnerability by injecting PHP INI settings and checking for phpinfo() output.

This repository contains a functional Python exploit for CVE-2024-4577, targeting a PHP-CGI remote code execution vulnerability. The script automates the exploitation process, including WAF bypass techniques, payload encoding, and command execution.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting PHP versions 8.1.x before 8.1.29, 8.2.x before 8.2.20, and 8.3.x before 8.3.8. The exploit leverages the 'Best-Fit' character replacement behavior in Windows to inject PHP options, allowing remote code execution.

This repository contains a Nuclei template designed to detect the PHP CGI Argument Injection vulnerability (CVE-2024-4577) by sending crafted HTTP requests and checking for a specific MD5 hash in the response. It does not include exploit code but provides a detection mechanism.

This repository contains a functional exploit for CVE-2024-4577, an argument injection vulnerability in PHP. The exploit leverages PHP's allow_url_include and auto_prepend_file directives to achieve remote code execution (RCE) by injecting malicious input via a crafted HTTP request.

This repository contains a functional Python script that exploits CVE-2024-4577, a PHP CGI argument injection vulnerability. The exploit sends crafted HTTP requests with a soft hyphen (0xAD) to bypass parameter parsing, potentially leading to arbitrary command execution.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, and 8.3.* before 8.3.8 on Windows systems. The exploit leverages Windows' 'Best-Fit' character replacement behavior to inject PHP options, enabling remote code execution.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting Windows systems. The script includes both scanning and exploitation capabilities, leveraging the %AD character to inject PHP options and execute arbitrary code.

The repository contains a functional Python script that scans for and exploits CVE-2024-4577, a PHP CGI Argument Injection vulnerability leading to Remote Code Execution (RCE). The exploit leverages crafted HTTP requests to inject PHP directives and execute arbitrary code.

This repository contains a functional exploit for CVE-2024-4577, targeting PHP-CGI misconfigurations to achieve remote code execution (RCE) via crafted HTTP requests. The script automates the exploitation process, allowing arbitrary PHP code execution through the `auto_prepend_file` parameter.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability on Windows systems. The script includes multiple payloads to test and exploit the vulnerability, allowing remote code execution by manipulating PHP CGI parameters.

This repository contains functional Nuclei templates for CVE-2024-4577, a PHP CGI argument injection vulnerability allowing unauthenticated RCE via crafted HTTP requests with the 0xAD character sequence. The templates test multiple paths and payloads to trigger arbitrary code execution.

This repository contains functional exploit code for multiple CVEs, including remote file inclusion, path traversal, and unauthorized file deletion vulnerabilities. Each PoC includes specific HTTP requests or commands to exploit the vulnerabilities.

The repository contains a functional Python script that exploits CVE-2024-4577, a PHP-CGI argument injection vulnerability, by sending a crafted HTTP request with a PHP payload to test for remote code execution (RCE). The script checks for vulnerability by analyzing the server's response for PHP info output.

This repository contains a functional Python script that tests for CVE-2024-4577, a PHP-CGI argument injection vulnerability. The script sends a crafted POST request to common PHP-CGI paths and checks if the target is vulnerable by attempting to execute arbitrary PHP code.

This repository contains a functional Python exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability allowing remote code execution. The exploit automates the process of testing multiple CGI paths, executing commands, and providing an interactive shell.

This repository contains a Bash script designed to scan multiple domains for the CVE-2024-4577 vulnerability in PHP-CGI on Windows systems. The script checks for the vulnerability by sending crafted HTTP requests and analyzing responses, but it does not include exploit code for actual exploitation.

This repository contains a Go-based scanner for CVE-2024-4577, a PHP CGI argument injection vulnerability on Windows. It checks for vulnerability by sending a crafted HTTP request and analyzing the response for PHP version info, but does not include actual exploit code for RCE.

The repository contains a scanner for CVE-2024-21762, which checks for the presence of the vulnerability in Fortinet SSL VPN interfaces. It includes Python scripts that send crafted HTTP requests to detect if a target is vulnerable.

This repository contains a functional exploit for CVE-2024-4577, targeting PHP CGI versions 8.1, 8.2, and 8.3 on Windows. The exploit leverages crafted HTTP POST requests to achieve remote code execution (RCE) and includes features like reverse shell functionality.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting PHP versions 8.1.x, 8.2.x, and 8.3.x on Windows systems. The exploit includes both scanning and exploitation capabilities, leveraging the %AD character to inject PHP options and execute arbitrary code.

This repository contains a functional exploit for CVE-2024-4577, leveraging PHP CGI argument injection via the 0xAD character to achieve remote code execution on XAMPP servers. The YAML file defines a Nuclei template that crafts malicious HTTP requests to inject PHP directives and execute arbitrary code.

This repository provides a functional proof-of-concept exploit for CVE-2024-4577, a PHP-CGI argument injection vulnerability leading to remote code execution. It includes detailed setup instructions for a lab environment and a working exploit payload.

This script leverages Shodan to find Apache (Win64) PHP/8.2.12 targets and tests for CVE-2024-4577 by sending crafted requests to exploit PHP-CGI argument injection. It checks for vulnerability by injecting PHP code via `php://input` and verifying execution.

This repository contains a scanner for CVE-2024-4577, which targets PHP CGI RCE vulnerabilities. It checks for connectivity, PHP CGI existence, PHP version, and attempts to exploit the vulnerability by sending a crafted request to trigger RCE.

This repository contains a functional Python-based exploit for CVE-2024-4577, a PHP CGI vulnerability that allows remote code execution (RCE) by manipulating query parameters and sending a crafted POST request. The exploit leverages PHP's configuration directives to include and execute arbitrary code from the input stream.

The repository claims to be a PoC for CVE-2024-4577 but lacks actual exploit code, instead providing a vague description and a screenshot. It includes generic options like proxy support and threading, which are typical of suspicious repos.

This is a technical writeup detailing the investigation of CVE-2024-4577, a PHP-CGI vulnerability. It includes steps for identifying vulnerable versions, analyzing logs, and confirming exploitation through process execution.

This repository contains a Python script designed to scan for CVE-2024-4577, a vulnerability in PHP-CGI. The script sends crafted HTTP requests to detect the presence of the vulnerability by checking for a specific MD5 hash in the response, but it does not include exploit code for achieving RCE.

The repository contains a Nuclei template (YAML) designed to detect CVE-2024-4577, a PHP CGI argument injection vulnerability on Windows systems. It sends crafted HTTP requests to check for the presence of the vulnerability but does not include functional exploit code for RCE.

This repository contains a Nuclei template for detecting PHP CGI Argument Injection (CVE-2024-4577). It sends crafted HTTP requests to check for vulnerability indicators but does not include functional exploit code for achieving RCE.

This repository contains a Nuclei template for detecting CVE-2024-4577, a PHP CGI argument injection vulnerability. The template sends a crafted POST request to test for the vulnerability by attempting to enable dangerous PHP configurations and execute arbitrary code via URL parameters.

This repository contains a functional Proof of Concept (PoC) for CVE-2024-4577, exploiting a PHP CGI argument injection vulnerability in XAMPP's default configuration. The PoC uses a crafted curl command to execute arbitrary code (e.g., 'calc') by manipulating PHP CGI parameters.

This repository contains a functional Python exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability affecting Windows systems. The exploit sends a crafted POST request to inject PHP code via the `allow_url_include` and `auto_prepend_file` directives, achieving remote code execution.

This repository provides a comprehensive detection engineering lab for CVE-2024-4577, including detailed technical analysis, detection rules, and a lab environment setup. It focuses on detection methodologies rather than providing a functional exploit.

This repository contains a functional Python exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability. The PoC sends a crafted POST request with malicious PHP code to achieve remote code execution (RCE) on vulnerable PHP installations.

This repository contains functional exploit code for CVE-2024-4577, a PHP CGI argument injection vulnerability, including scripts for testing, file reading, command execution, and container escape. The detailed walkthrough explains the vulnerability mechanics and provides step-by-step exploitation guidance.

This repository contains a Python-based scanner for detecting the presence of PHP-CGI endpoints and checking if the PHP version is vulnerable to CVE-2024-4577. It does not include exploit code but performs version checks and SAPI detection.

This repository contains a functional exploit PoC for CVE-2024-4577, demonstrating a PHP CGI argument injection vulnerability. It includes a test script and environment checker to verify the vulnerable setup.

This repository contains a functional scanner and exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability. The scanner checks for vulnerability by sending a PHP payload that prints a specific MD5 hash, while the exploit executes arbitrary system commands on vulnerable targets.

This repository contains a functional PoC that chains CVE-2024-4577 with DNS rebinding to achieve RCE on internal PHP-CGI instances. It uses DuckDNS for dynamic DNS updates and serves a malicious payload to exploit vulnerable local servers.

This repository contains a functional Python script that tests for CVE-2024-4577, a PHP CGI vulnerability on Windows systems allowing arbitrary code execution via multibyte character bypass. The script sends a crafted POST request with a PHP payload to detect if the target is vulnerable.

This repository contains a functional PowerShell script that exploits CVE-2024-4577, a PHP-CGI argument injection vulnerability, by sending crafted HTTP requests to scan a subnet and execute arbitrary commands (e.g., 'whoami') on vulnerable targets.

This repository contains a functional Python exploit for CVE-2024-4577, a PHP CGI argument injection vulnerability. The exploit sends crafted HTTP requests to inject PHP directives and achieve remote code execution (RCE) on vulnerable Windows systems.

The repository contains functional exploit code for CVE-2017-5487, demonstrating an information disclosure vulnerability in WordPress via the /wp-json/wp/v2/users endpoint. The exploit sends a GET request to retrieve user details without proper access controls.

The repository contains a Python script that scans for CVE-2024-4577 by sending crafted HTTP requests to test for potential RCE vulnerabilities in PHP CGI configurations. It checks for specific responses indicating vulnerability but does not include actual exploit code for command execution.

This repository contains a functional exploit for CVE-2024-4577, an argument injection vulnerability in PHP. The exploit sends a crafted POST request to inject PHP code via the `allow_url_include` and `auto_prepend_file` parameters, achieving remote code execution (RCE).

The repository provides a technical explanation of CVE-2024-4577, an argument injection vulnerability in PHP-CGI mode on Windows systems. It describes how the Best-fit Unicode character mapping feature can lead to incorrect encoding conversion, potentially allowing remote code execution.

This repository contains functional exploit code for CVE-2024-4577, a PHP remote code execution vulnerability. The exploit leverages PHP configuration manipulation via HTTP parameters to execute arbitrary commands on the target system.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI RCE vulnerability on Windows. It includes PowerShell scripts for reverse shell and ransomware deployment, demonstrating the exploit's potential impact.

This repository contains a functional Python script that exploits CVE-2024-4577, a PHP CGI remote code execution vulnerability. The exploit sends crafted POST requests with specific query parameters to target hosts, checks for vulnerability by verifying the presence of 'PHP Version' in the response, and supports multi-threaded execution for efficiency.

The repository lacks actual exploit code or technical analysis, instead providing a vague README with a link to NVD. No technical details, code, or proof-of-concept are included.

The repository contains functional exploit code for CVE-2024-4577, a PHP-CGI remote code execution vulnerability affecting PHP versions 8.3 < 8.3.8, 8.2 < 8.2.20, and 8.1 < 8.1.29. The exploit leverages crafted HTTP requests to execute arbitrary commands via PHP-CGI parameter injection.

This repository contains a functional exploit for CVE-2024-4577, a PHP-CGI RCE vulnerability affecting Windows PHP versions. The exploit leverages FastCGI protocol manipulation and the `cgi.force_redirect` bypass to achieve remote code execution.

The script checks for CVE-2024-4577 by sending a crafted HTTP request to test if PHP's allow_url_include and auto_prepend_file directives can be manipulated via URL-encoded parameters. It does not execute arbitrary commands but verifies vulnerability by checking for PHP info disclosure.

This repository contains a functional exploit for CVE-2024-4577, a PHP-CGI remote code execution vulnerability on Windows platforms. The exploit leverages the Best-Fit character conversion feature in Windows to bypass patches for previous CGI vulnerabilities (CVE-2012-1823 and CVE-2012-2311) and execute arbitrary PHP code.

This script checks for CVE-2024-4577 by sending a crafted POST request to test for PHP remote code execution via URL parameter manipulation. It verifies vulnerability by checking if the response contains 'PHP Version'.

The repository contains a functional Python exploit for CVE-2024-4577, which leverages PHP CGI argument injection to achieve remote code execution (RCE) on vulnerable systems. The exploit sends a crafted HTTP request with malicious arguments to execute arbitrary commands or PHP code.

The repository contains a functional exploit script for CVE-2024-4577, which targets PHP CGI implementations on Windows systems. The script tests multiple payloads to detect and exploit the vulnerability by injecting PHP code via malformed arguments.

The repository contains a functional Python script that exploits CVE-2024-4577, a vulnerability in PHP CGI allowing remote code execution via crafted HTTP requests. The PoC sends a malicious request to enable URL inclusion and auto-prepend a PHP payload, verifying exploitation by checking for a specific string in the response.

This repository contains a bash script that checks for CVE-2024-4577 by sending a crafted POST request to a list of domains and analyzing the response for signs of vulnerability. It does not exploit the vulnerability but detects it by checking if the response contains 'PHP Version'.

This repository contains a functional exploit for CVE-2024-4577, a PHP CGI RCE vulnerability on Windows systems. The exploit uses a threaded approach to target XAMPP installations, leveraging PHP's auto_prepend_file directive to execute arbitrary commands.

The repository contains a Python script that scans for a CGI vulnerability by sending crafted HTTP requests to test URLs. It checks for the presence of a specific response pattern but does not include exploit code for achieving remote code execution.

The repository contains only a README.md file with the CVE identifier and no additional technical details or exploit code. It is a placeholder with minimal content.

The repository contains a Python script that scans for CVE-2024-4577 by sending crafted HTTP requests to test for potential RCE vulnerabilities in PHP CGI configurations. It does not include actual exploit code for achieving RCE but checks for indicators of vulnerability.

The repository provides a technical explanation of CVE-2024-4577, an argument injection vulnerability in PHP-CGI affecting Windows systems. It describes how the Best-fit Unicode character mapping feature can be exploited to bypass security measures, leading to potential remote code execution.

The repository contains a functional exploit for CVE-2024-4577, leveraging PHP CGI argument injection via the 0xAD character to achieve remote code execution on XAMPP servers. The YAML file includes a crafted HTTP request with a malicious payload to enable arbitrary code execution.

The repository contains a Nuclei template for detecting CVE-2024-4577, a PHP CGI argument injection vulnerability on Windows systems. It checks for vulnerable endpoints by sending a crafted POST request and matching responses.

This repository contains a functional exploit for CVE-2024-4577, targeting PHP-CGI misconfigurations to achieve remote code execution (RCE). The script sends a crafted POST request to exploit vulnerable PHP-CGI configurations, allowing arbitrary PHP code execution.

The repository contains a bash script that checks for CVE-2024-4577 by sending a crafted POST request to a list of domains and analyzing the response for PHP version information. It does not exploit the vulnerability but scans for its presence.

The repository contains functional Nuclei templates for detecting and exploiting multiple vulnerabilities, including CVE-2024-4577 (PHP-CGI argument injection leading to RCE). The templates are well-structured and include specific HTTP requests to trigger and verify vulnerabilities.

This Metasploit module exploits CVE-2024-4577, a PHP CGI argument injection vulnerability affecting Windows systems with specific locale configurations. It leverages Unicode best-fit character conversion to inject malicious arguments and achieve remote code execution.