HEX
Server: LiteSpeed
System: Linux us-phx-web629.main-hosting.eu 5.14.0-503.23.2.el9_5.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Feb 12 05:52:18 EST 2025 x86_64
User: u756937133 (756937133)
PHP: 8.2.30
Disabled: passthru,chgrp
$ pwd: /opt/.wp-cli/packages/vendor/wp-cli/doctor-command/features/
Upload Files
File: //opt/.wp-cli/packages/vendor/wp-cli/doctor-command/features/check-php-in-upload.feature
Feature: Check for presence of .php files in the uploads folder

  Scenario: Detect PHP files
    Given a WP install
    And a wp-content/uploads/malicious.php file:
      """
      <?php some_malicious_code(); ?>
      """

    When I run `wp doctor check php-in-upload`
    Then STDOUT should be a table containing rows:
      | name          | status  | message                                   |
      | php-in-upload | warning | PHP files detected in the Uploads folder. |
@ Telegram