A security researcher has kicked off a project to put the spotlight on flaws in the widely used PHP scripting language. The initiative, dubbed "Month of PHP Bugs," started on Thursday. Five ...

Stefan Esser's month of PHP bugs project is off and running with details on three unpatched vulnerabilities that could lead to program crashes and possible code execution attacks. The first batch of ...

Security expert Stefan Esser has declared war on vulnerabilities in the PHP core with the “Month of PHP Bugs.” PHP is an open-source HTML embedded scripting language used to create dynamic Web pages.

Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases. Versions of the popular developer tool Zend Framework and ...

Fixes for a floating point bug affecting PHP on 32-bit systems have been published, the PHP development team reported on Thursday. Initially expected on Wednesday, the fixes slid until today, with PHP ...

Inspired by the Month of Browser Bugs and the Month of Apple Bugs, the Hardened-PHP Project has declared March the Month of PHP Bugs (MOPB) to draw attention to security vulnerabilities in the core ...

Add articles to your saved list and come back to them any time. The PHP Group has released a new version, 4.3.1, to fix a vulnerability in the CGI SAPI of PHP version 4.3.0. PHP is the most popular ...

CVE-2019-11043 is trivial to exploit — and a proof of concept is available. A buffer underflow bug in PHP could allow remote code-execution (RCE) on targeted NGINX servers. First discovered during a ...

A vulnerability that allows attackers to take control of websites running older versions of the PHP scripting language continues to threaten the Internet almost two years after security researchers ...

A huge number of websites around the world are endangered by an unpatched vulnerability in the PHP scripting language that attackers are already trying to exploit to remotely take control of ...