# info to search signature
id: CVE-2019-11043
info:
  name: PHP 7 + Nginx RCE

requests:
  - method: GET
    redirect: false
    url: >-
     {{.BaseURL}}/index.php
    middlewares:
      # not recommend using too much concurrency when calling other Command
      - >-
        InvokeCmd("phuip-fpizdam {{.URL}}")

    detections:
      - >-
        StringSearch("middleware", "QQQQQQQQQQ") || StringSearch("middleware", "Success!") 

reference:
  links:
    - https://github.com/neex/phuip-fpizdam