PHP Archives - Help Net Security

PHP

PHP RCE flaw actively exploited to pop NGINX servers

October 28, 2019

A recently patched vulnerability (CVE-2019-11043) in PHP is being actively exploited by attackers to compromise NGINX web servers, threat intelligence firm Bad Packets has …

PHP PEAR supply chain attack: Backdoor added to installer

January 24, 2019

Some additional details have emerged about the recent security breach involving the PHP PEAR (PHP Extension and Application Repository) webserver, but much is still unknown. …

PHP

PHP RCE flaw actively exploited to pop NGINX servers

PHP PEAR supply chain attack: Backdoor added to installer

Don't miss

CWE list now includes hardware security weaknesses

Modern malware is increasingly leveraging evasive behaviors

Flaw affecting 1B+ Wi-Fi-enabled devices allows attackers to decrypt wireless network packets

Attackers probing for vulnerable Microsoft Exchange Servers, is yours one of them?

Google fixes another Chrome zero-day exploited in the wild