PHPUnit should strictly be a development dependency and should not be uploaded to production servers. Miggo Security Are you checking a server log for this path, or are you looking for a remediation guide for a specific application? Vulnerability Details : CVE-2017-9841
The path vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php refers to a critical Remote Code Execution (RCE) vulnerability tracked as . This flaw allows an unauthenticated attacker to execute arbitrary PHP code on a server. Vulnerability Summary vendor phpunit phpunit src util php eval-stdin.php cve
<?php eval('?>' . file_get_contents('php://stdin')); PHPUnit should strictly be a development dependency and