CVE report

CVE-2024-4577criticalKEV

PHP CGI - Argument Injection

Events 7d

234

Distinct IPs

14

Severity

critical

CISA KEV

Actively exploited

Daily probe volume (last 7 days)

peak: 97
2026-05-14: 2 events05-142026-05-15: 21 events05-152026-05-16: 10 events05-162026-05-17: 6 events05-172026-05-18: 36 events05-182026-05-19: 97 events05-192026-05-20: 59 events05-202026-05-21: 3 events05-21

Downloads & integrations

Top sources probing for CVE-2024-4577

URL patterns we match

An event counts toward CVE-2024-4577 if its URL path contains any of these substrings (case-insensitive).

  • · /test.hello
  • · /test.php
  • · /php-cgi/php-cgi.exe