News
Two updates pushed to the PHP Git server over the weekend added a line that, if run by a PHP-powered website, would have allowed visitors with no authorization to execute code of their choice.
In the latest software supply chain attack, the official PHP Git repository was hacked and the code base tampered with. Yesterday, two malicious commits were pushed to the php-src Git repository ...
The open-source server-side language is commonly used in web development. The code change was first noticed by contributors Markus Staab, Michael Voříšek, and Jake Birchall.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback