Ars Technica

Nasty bug with very simple exploit hits PHP just in time for the weekend

A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security researchers warned as they urged those affected to take ...
TechRadar

PHP code could be easily exploited to let hackers target Windows servers

Cybersecurity researchers have discovered a new vulnerability in PHP which could allow hackers to run malicious code remotely. The vulnerability is tracked as CVE-2’24-4577, and is described as a CGI ...
Ars Technica

Hackers backdoor PHP source code after breaching internal git server

A hacker compromised the server used to distribute the PHP programming language and added a backdoor to source code that would have made websites vulnerable to complete takeover, members of the open ...
CSOonline

PHP 5.3.10 Fixes Critical Remote Code Execution Vulnerability

The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers running an older version of the Web development ...