CVE-2024-4577 impacts PHP and exploited in wild
CVE-2024-4577 is a critical Remote Code Execution (RCE) vulnerability affecting PHP when running in CGI mode on Windows systems with Apache. This flaw arises from the improper handling of command-line…
PHP Patches Multiple Vulnerabilities Including CVE-2024-8932
The PHP development team has released patches to address multiple vulnerabilities affecting versions prior to 8.1.31, 8.2.26, and 8.3.14 potentially allowing attackers to leak sensitive information, execute arbitrary code, or…
Critical RCE Flaw in PHP Patch it – CVE-2024-4577
A critical remote code execution vulnerability in the PHP programming language by the researchers from the firm DEVCORE, the vulnerability could potentially allow unauthenticated attackers to take full control of…
QNAP RCE Bug Patched
QNAP has warned its customers earlier this week that some of its NAS devices with non-default configurations are vulnerable to attacks that would exploit a three-year-old critical PHP vulnerability allowing…
Imunify 360 Bug Could Deserialize PHP
A severe PHP deserialization vulnerability leading to code execution has been patched in Imunify360. Imunify360 is a security platform for web-hosting servers that allows users to configure various settings for…
Backdoor harvested in PHP Git
Attackers hacked the official Git server of the PHP programming language and pushed unauthorised updates to insert a backdoor into the source code.Attackers pushed two commits to the “php-src” repository…