Serious PHP flaw



PHP which is a widely used scripting language for webpages has been found to have a serious vulnerability. The Inquirer is reporting on the announcement at hardened-php.net that the vulnerabilities are in the XML-RPC for PHP and PEAR XML-RPC libraries. This is apparently an eval() vulnerability similar to one earlier in the year.



The hardened-php project has developed a fix that removes the use of eval() from both libraries. The fix was developed with the maintainers of both libraries.

Related Posts

Blog Traffic Exchange Related Posts
  • January Patch Tuesday Microsoft has issued two advisories related to patches coming out today. Both are remote code execution vulnerabilities, the first affects Outlook and Exchange server, the second is related to embedded Web fonts. The links above don't yet seem active, but should go to the technet Security bulletins once Microsoft finishes......
  • OTHER Sony DRM software has security flaws too. You almost want to bury your head in the sand at this point if you're Sony.... Freedom-to-tinker has some details. The last couple weeks the XCP copy protection that Sony uses has been the center of a Firestorm for rootkit capabilities and massive security problems. Well, it seems the OTHER......
  • October Microsoft update advance notice.... 11 patches will be released by Microsoft on the 10th of October. Bulletin is here, 6 for windows, 4 for Office (at least one in each of those two batches is critical) and 1 .NET (moderate) - yes the Windows updates will likely require a restart. Betanews has a bit......
Blog Traffic Exchange Related Websites
  • Repairing Cracks in Walls If you have an older home that has some structural damage, or if you are starting to notice tiny cracks in the walls, the time to fix these is now, before they get any worse. If the crack is serious, you may need to get the help of a professional,......
  • Browser History Hijacking Flaw Browser history hijacking is a flaw in a web browser that allows certain websites access to all the sites a user has ever visited.  This is a techniques used by sporting, news, movie, financial and porn websites to better place ads and check to see if you have visited any......
  • Problems with GrungeMag Theme were Solved Since switching to the GrungeMag theme about two weeks ago, I've been having a problem where the category menu is not working. The theme use Superfish style menu which is very awesome but not until today the category menu is working nicely in this blog. GrungeMag by Elegant Themes is......
en.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site