If you have discovered an "Index of" page or are seeing requests for eval-stdin.php in your server logs, your application is likely being scanned for a well-known vulnerability in older versions of PHPUnit . The Critical Flaw
Compromised servers are often used for cryptojacking, sending spam, or building botnets. Mitigation and Recommended Actions Autoloading Classes - Manual - PHP If you have discovered an "Index of" page
The file path vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php refers to a high-severity Remote Code Execution (RCE) vulnerability, tracked as CVE-2017-9841 Review: The PHPUnit RCE Vulnerability If you have discovered an "Index of" page
This file gained significant attention in late 2017 / early 2018: If you have discovered an "Index of" page
Using curl :