Remote Code Execution - CVE-2012-1823

• Risk:

• High

• Type:
• Active

• CWE:
• CWE-20

Summary

Some PHP versions, when configured to run using CGI, do not correctly handle query strings that lack an unescaped “=” character, enabling arbitrary code execution. In this case, an operating system command was caused to be executed on the web server, and the results were returned to the web browser.

Solution

Upgrade to the latest stable version of PHP, or use the Apache web server and the mod_rewrite module to filter out malicious requests using the "RewriteCond" and "RewriteRule" directives.

References

https://owasp.org/www-community/vulnerabilities/Improper_Data_Validation

https://cheatsheetseries.owasp.org/cheatsheets/Input_Validation_Cheat_Sheet.html

https://cwe.mitre.org/data/definitions/89.html

Latest Security News

CISOs Are Gaining C-Suite Swagger, but Has It Come With a Cost?

DoJ Busts Up Another Multinational DPRK IT Worker Scam

Zyxel warns of bad signature update causing firewall boot loops

Microsoft to deprecate WSUS driver synchronization in 90 days

MITRE's Latest ATT&CK Simulations Tackle Cloud Defenses

MITRE's Latest ATT&CK Simulations Tackles Cloud Defenses

Cisco: Critical Meeting Management Bug Requires Urgent Patch

3 Use Cases for Third-Party API Security

Common Alerts

HighCloud Metadata Potentially Exposed

LowSecure Pages Include Mixed Content

LowCSP: X-Content-Security-Policy

HighSource Code Disclosure - /WEB-INF Folder

HighAdvanced SQL Injection

HighSource Code Disclosure - File Inclusion

LowDangerous JS Functions

LowX-Debug-Token Information Leak

HighSQL Injection - SQLite

MediumMissing Anti-clickjacking Header

Top CVE List

CVE-2024-50603 Aviatrix Controllers OS Command Injection Vulnerability

CVE-2024-47575 Fortinet FortiManager Missing Authentication Vulnerability

CVE-2024-49039 Microsoft Windows Task Scheduler Privilege Escalation Vulnerability

CVE-2020-11023 JQuery Cross-Site Scripting (XSS) Vulnerability

CVE-2025-21333 Microsoft Windows Hyper-V NT Kernel Integration VSP Heap-based Buffer Overflow Vulnerability

CVE-2024-55591 Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability

CVE-2025-0282 Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerability

CVE-2017-6736 Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

CVE-2024-50623 Cleo Multiple Products Unrestricted File Upload Vulnerability

CVE-2017-3881 Cisco IOS and IOS XE Remote Code Execution Vulnerability

Top CWE List

CWE-693 Protection Mechanism Failure

HighCWE-200 Exposure of Sensitive Information to an Unauthorized Actor

MediumCWE-352 Cross-Site Request Forgery (CSRF)

CWE-1426 Improper Validation of Generative AI Output

HighCWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CWE-1053 Missing Documentation for Design

CWE-304 Missing Critical Step in Authentication

CWE-307 Improper Restriction of Excessive Authentication Attempts

HighCWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

HighCWE-116 Improper Encoding or Escaping of Output