News
By moving their code infrastructure to a third-party service like GitHub, open-source projects can outsource server administration and security to a service provider that has paid full-time ...
In the latest software supply chain attack, the official PHP Git repository was hacked and the code base tampered with. Yesterday, two malicious commits were pushed to the php-src Git repository ...
Open-source projects which are self-hosting their code repositories may be at increased risk of this type of supply-chain attack and must have robust processes in place to detect and reject ...
Code hosting website GitHub announced today plans to add support for a Dependency Graph for Composer-based PHP projects.
Two updates pushed to the PHP Git server over the weekend added a line that, if run by a PHP-powered website, would have allowed visitors with no authorization to execute code of their choice.
A new PHP for Windows remote code execution (RCE) vulnerability has been disclosed, impacting all releases since version 5.x, potentially impacting a massive number of servers worldwide.
Results that may be inaccessible to you are currently showing.
Hide inaccessible results
Feedback