How to check php vulnerability?

A friend asked me to help, fill his code in my server. I filled it and there was a wso php shell. I cut everywhere but probably even left their wso. Is there any utility under linux to check all php files I have 12K on all kinds of vulnerabilities shells, etc?
July 9th 19 at 10:37
6 answers
July 9th 19 at 10:39
An example is? I only clamav found - Aurelia56 commented on July 9th 19 at 10:42
: it is enough - bailee_Stant commented on July 9th 19 at 10:45
: a a ai-bolit fit? - Aurelia56 commented on July 9th 19 at 10:48
: if I am not mistaken clamav has the largest database of vulnerabilities and is used almost everywhere(on hosts) is clamav. About AI-bolit this is not to say, rarely seen mention of it. - bailee_Stant commented on July 9th 19 at 10:51
July 9th 19 at 10:41
Other friends?
A friend in shell, heh.
July 9th 19 at 10:43
maldet. it uses the ClamAV database, but works faster.
also it makes sense to run rkhunter.

When I worked in hosting this bunch was enough to check the server website for rootkits and Shelah
July 9th 19 at 10:45
Usually just restart the deployment of the application on the server and remove the old version.
But, apparently, you even have no backups.
July 9th 19 at 10:47
July 9th 19 at 10:49
MalDet and AI-Bolit will help you.

Find more questions by tags LinuxPHPUbuntu