New PHP Vulnerability Exposes Windows Servers to Remote Code Execution

A critical PHP vulnerability (CVE-2024-4577) impacting Windows servers allows remote code execution. Discovered by DEVCORE, this CGI argument injection flaw bypasses previous security measures, affecting all PHP versions on Windows. XAMPP installations using certain locales are especially at risk. A patch is available in PHP versions 8.3.8, 8.2.20, and 8.1.29. Immediate updates are recommended due to detected exploitation attempts. Administrators are advised to transition from PHP CGI to more secure alternatives like Mod-PHP or PHP-FPM.

More Information:

https://thehackernews.com/2024/06/new-php-vulnerability-exposes-windows.html