New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Hackers use PHP exploit to backdoor Windows systems with new malware
CVE-2024-4577 is a critical PHP-CGI argument injection flaw patched in June that impacts PHP installations running on Windows systems with PHP running in CGI mode. It allows unauthenticated attackers to execute arbitrary code and leads to complete system compromise following successful exploitation.
Comments
It's time to uninstall PHP and delete WordPress.
@Petey_Long @emgh @mw
All our Wordpress sites run on Windows Vista, do I have to worry?
do I need to worry with my windows xp
Gen Alpha hackers are asking: what is windows xp?
We have PHP 3.0.17 running on Windows 98.
It doesn't support IPv6 and I don't think it supports all those CVEs either.
we use kaspersky so we’re fine /s
I have Norton. You can't hack me.
See, this is why everyone must use TempleOS, can't get hacked remotely if there's no network in the first place.
HAZI.ro running on Windows XP SP3, we're safe.
omg that would be disastrous
using PHP with windows that is
Head office at work requires us to use Windows for all VM's & our helpdesk software runs on IIS with PHP - wish me luck everyone.
Resign
Job too easy currently, maybe when shit hits the fan
That’s the spirit. Let it slowly rot and quit when shits about to hit the fan & let the next sucker deal with it
too bad 3.11 did not have IIS, right?
That's right
@kuwontol
Wait, someone use PHP in windows for prod? Who does that? :O
PHP and Windows deserve each other.
I will install the latest crowdstrike update to protect my 100% uptime windows server.
Yapp, Please give a review
windows and php sound like sodium and water
you try to mix it together
it goes boom
You'd be surprised.
I failed grade 10 science, but what?
In 2010, Microsoft requires every server in the data center to be Windows.
We were building a social network like project, in which when a user shares a link we want to display the webpage title.
ASP.Net doesn't have a parser for non-wellformed HTML, so I used DOMDocument::loadHTML.
Violà, here's PHP on Windows in production.
if I have to run PHP on Windows for development or other reasons, using Docker to create a Linux container with PHP can be a good compromise. This allows you to develop on Windows while running the application in a Linux-like environment.