A significant security vulnerability in PHP, identified as CVE-2024-4577, is being actively exploited by cybercriminals to spread cryptocurrency miners and remote access trojans like Quasar RAT. This flaw primarily affects Windows systems running PHP in CGI mode, allowing hackers to execute arbitrary code. Bitdefender reported a surge in exploitation attempts, notably in Taiwan, Hong Kong, ...
A newly discovered PHP server vulnerability, known as CVE-2024-4577, has been exploited to install the PacketCrypt Classic Cryptocurrency Miner. This vulnerability allows attackers, particularly targeting PHP versions on Windows with specific language settings, to execute remote code. Identified by researcher Orange Tsai and further examined by Watchtwr Labs, it has led to multiple exploit attempts ...
A critical vulnerability in PHP servers, known as CVE-2024-4577, has been exploited to inject a cryptocurrency miner called PacketCrypt Classic. This flaw allows attackers to execute remote code on vulnerable PHP versions, particularly those running on Windows with Chinese and Japanese language settings. Identified by researcher Orange Tsai in June 2024, the vulnerability has been ...
