Tweakers

PHP onder cgi is kwetsbaar door ernstige bug

PHP-installaties die via cgi worden aangeroepen, kunnen eenvoudig worden misbruikt. Op afstand kunnen argumenten aan het cgi-script worden toegevoegd, waardoor bijvoorbeeld code kan worden uitgevoerd ...
GitHub

Plack::App::PHPCGI - execute PHP script as CGI

Plack::App::WrapCGI supports CGI scripts written in other languages. but WrapCGI cannot execute PHP script that does not have shebang line and exec bits. Plack::App::PHPCGI execute any PHP scripts as ...
GitHub

Run and Execute PHP, JS, Ruby, Python 2, Python 3, ASPX, JSP, and CGI in CGI / Shell mode using node.js npm package / module.

Run php scripts like wordpress, drupal, etc with node and cgi counter parts. phpcgijs also builds in a CGIJS library to run any CGI mode / Interpreted language script files, or connect to any web ...
The Hacker News

Un-Patched PHP-CGI remote code execution vulnerability can expose Source Codes

A serious remote code execution vulnerability in PHP-CGI disclosed. PHP-CGI-based setups contain a vulnerability when parsing query string parameters from php files. The developers were still in the ...
Ars Technica

Nasty bug with very simple exploit hits PHP just in time for the weekend

A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security researchers warned as they urged those affected to take ...
TWCN Tech News

FastCGI feature must be enabled in order to register PHP

If you have enabled CGI/FastCGI using the Windows Features Experience, and even then, if you notice no CGI icon in IIS Manager, this post will help you fix the problem. You can also identify the issue ...
The Hacker News

Linux worm targeting Routers, Set-top boxes and Security Cameras with PHP-CGI Vulnerability

A Symantec researcher has discovered a new Linux worm, targeting machine-to-machine devices, and exploits a PHP vulnerability (CVE-2012-1823) to propagate that has been patched as far back as May 2012 ...