Actualités

ZDNet3 a

PHP Everywhere code execution bugs impact thousands of ... - ZDNET

PHP Everywhere code execution bugs impact thousands of WordPress websites The remote code execution flaws are of critical severity.
Bleeping Computer1 a

TellYouThePass ransomware exploits recent PHP RCE ... - BleepingComputer

The TellYouThePass ransomware gang has been exploiting the recently patched CVE-2024-4577 remote code execution vulnerability in PHP to deliver webshells and execute the encryptor payload on ...
Threat Post5 a

PHP Bug Allows Remote Code-Execution on NGINX Servers

CVE-2019-11043 is trivial to exploit — and a proof of concept is available. A buffer underflow bug in PHP could allow remote code-execution (RCE) on targeted NGINX servers. First discovered ...
ZDNet5 a

Nasty PHP7 remote code execution bug exploited in the wild

The vulnerability is a remote code execution (RCE) in PHP 7, the newer branch of PHP, the most common programming language used to build websites.
Threat Post7 a

Severe PHP Exploit Threatens WordPress Sites with Remote Code Execution

The researchers at Secarma who uncovered the exploit said it enables bad actors to potentially open up thousands of WordPress sites (and other web applications) to remote code-execution.
WeLiveSecurity1 a

Analysis of two arbitrary code execution vulnerabilities affecting WPS ...

This file path is attacker-defined, which means that an attacker could achieve code execution by loading an arbitrary DLL. Figure 4 illustrates how the attacker-controlled JSCefServicePath ...
Computerworld13 a

PHP 5.3.10 fixes critical remote code execution vulnerability

The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers running an older version of the Web ...