In this second excerpt from Advanced PHP Programming, George Schlossnagle offers advice on how to defend against both attacks and carelessness.

Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases.

New exploits for a two-year-old PHP vulnerability popped up in October that allow hackers to run code on websites running vulnerable versions of the web development framework.

PHP Everywhere code execution bugs impact thousands of WordPress websites The remote code execution flaws are of critical severity.

Nasty bug with very simple exploit hits PHP just in time for the weekend With PoC code available and active Internet scans, speed is of the essence.

Severe security bug found in popular PHP library for creating PDF files Vulnerability patched last year, but many websites and web apps will most likely remain vulnerable for years.

This leak — the so-called “Cloudbleed” bug — appears to be the latest in a growing list of Internet nightmare scenarios, and is reportedly based around a coding vulnerability turned data ...

The report also highlights bug severity, with Claude Sonnet 4, the highest-scoring model on functional benchmarks, producing nearly double the proportion of BLOCKER bugs compared to its ...

Anthropic's Claude Code tool contained buggy auto-update commands that broke some systems, according to reports.

According to a bug report on Cursor's official forum, after producing approximately 750 to 800 lines of code (what the user calls "locs"), the AI assistant halted work and delivered a refusal ...