Update php-pfm related nginx configuration due to CVE-2019-11043
The following sites should check if the path actually exists and return a 404 instead of passing it to php-fpm.
https://github.com/vulhub/vulhub/tree/master/php/CVE-2019-11043
roles/archwiki/templates/nginx.d.conf.j2: fastcgi_split_path_info ^(.+.php)(.)$;
roles/archwiki/templates/nginx.d.conf.j2: fastcgi_param PATH_INFO $fastcgi_path_info;
roles/archwiki/templates/nginx.d.conf.j2: fastcgi_split_path_info ^(.+.php)(.)$;
roles/archwiki/templates/nginx.d.conf.j2: fastcgi_param PATH_INFO $fastcgi_path_info;
roles/kanboard/templates/nginx.d.conf.j2: fastcgi_split_path_info ^(.+.php)(/.+)$;
roles/zabbix-server/templates/nginx.d.conf.j2: fastcgi_split_path_info ^(.+.php)(/.+)$;
Migrated from: https://kanboard.archlinux.org/project/1/task/186
Edited by Frederik Schwan