A security flaw discovered in a common PHP script allows knowledgeable attackers to execute code on a website that uses a vulnerable version of the script, which in turn can allow an attacker to take ...

Impacted are PHP-based websites running a vulnerable version of the web-app creation tool Zend Framework and some Laminas Project releases. Versions of the popular developer tool Zend Framework and ...

A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security researchers warned as they urged those affected to take ...

A new report today from code quality testing startup SonarSource SA is warning that while the latest large language models may be getting better at passing coding benchmarks, at the same time they are ...

The RCE bugs impact PHP Everywhere, a utility for web developers to be able to use PHP code in pages, posts, the sidebar, or anywhere with a Gutenberg block – editor blocks in WordPress – on domains ...

A security researcher has found a severe security flaw in one of the internet's most popular PHP libraries for creating PDF files. The vulnerability impacts TCPDF, one of the "big three" PHP libraries ...

Fixes for a floating point bug affecting PHP on 32-bit systems have been published, the PHP development team reported on Thursday. Initially expected on Wednesday, the fixes slid until today, with PHP ...

As promised last year the initiative ‘Month of PHP bugs’ began on March 1st. Whereas previous efforts in the same vein — month of bugs for Mac, browsers and kernels — were new bugs, this PHP effort ...