From thehackernews.com
![nginx php-fpm hacking exploit](https://1.bp.blogspot.com/-8n7xadw2lZ0/XbSVeRSVJjI/AAAAAAAA1gw/mioKr8xD2zss8Xp1sCkDuDffPjd9NyuJgCLcBGAsYHQ/s728-e100/nginx-php-fpm-hacking-exploit.jpg)
If you’re running any PHP based website on NGINX server and have PHP-FPM feature enabled for better performance, then beware of a newly disclosed vulnerability that could allow unauthorized attackers to hack your website server remotely.
The vulnerability, tracked asĀ CVE-2019-11043, affects websites with certain configurations of PHP-FPM that is reportedly not uncommon in the wild and could be exploited easily as a proof-of-concept (PoC) exploit for the flaw has already been released publicly.