Malicious entities are capitalizing on a critical security weakness in PHP to deploy cryptocurrency mining software and remote access trojans (RATs) such as Quasar RAT. The flaw, designated with the CVE identifier CVE-2024-4577, pertains to an argument injection weakness in PHP that impacts Windows systems operating in CGI mode, enabling remote adversaries to execute arbitrary code. Cybersecurity firm