News

Bleeping Computer4y
PHP's Git server hacked to add backdoors to PHP source code - BleepingComputer
In the latest software supply chain attack, the official PHP Git repository was hacked and tampered with. Yesterday, two malicious commits were pushed to the php-src Git repository maintained by ...
Ars Technica4y
Hackers backdoor PHP source code after breaching internal git server
Two updates pushed to the PHP Git server over the weekend added a line that, if run by a PHP-powered website, would have allowed visitors with no authorization to execute code of their choice.
Bleeping Computer1y
PHP fixes critical RCE flaw impacting all versions for Windows - BleepingComputer
A new PHP for Windows remote code execution (RCE) vulnerability has been disclosed, impacting all releases since version 5.x, potentially impacting a massive number of servers worldwide.