Known exploited
PHPUnit
CVE published 2022-02-15
CVE-2017-9841
CVE-2017-9841 is a PHPUnit command injection vulnerability that CISA has listed in its Known Exploited Vulnerabilities catalog. That KEV listing makes this a high-priority issue for any environment that uses PHPUnit, especially if the software is exposed or reachable in ways that could allow abuse. The safest response is to follow vendor update guidance immediately and confirm the vulnerable component is [truncated]