Tag

Unicode

3 briefs RSS

FrankenPHP Unsafe Unicode Handling in CGI Path Splitting Allows Execution of Non-PHP Files

Two distinct flaws in the `splitPos()` function in `cgi.go` allows an attacker to mislead FrankenPHP into treating a non-`.php` file as a `.php` script, leading to remote code execution where the attacker can control file content.

frankenphp unicode remote code execution web server

2r 1t 1c May 15, 2026

high advisory

Glassworm Malware Hidden in Unicode Characters Affecting GitHub Repositories

3 rules 4 TTPs 1 IOC

The Glassworm malware utilizes invisible unicode characters to infect over 150 GitHub repositories, posing a supply chain risk to developers and users.

supply-chain unicode malware github

3r 4t 1i Mar 15, 2026

high advisory

Command Obfuscation via Unicode Modifier Letters

2 rules 1 TTP

Adversaries use Unicode modifier letters to obfuscate command-line arguments, evading string-based detections on common Windows utilities like PowerShell and cmd.exe.

Microsoft Defender XDR +5 defense-evasion command-line unicode obfuscation

2r 1t Jan 3, 2024