New PHP Flaw Could Let Attackers Hack Sites Running On Nginx Servers

If you’re running any PHP based website on NGINX server and have PHP-FPM feature enabled for better performance, then beware of a newly disclosed vulnerability that could allow unauthorized attackers to hack your website server remotely.

The vulnerabi… Continue reading New PHP Flaw Could Let Attackers Hack Sites Running On Nginx Servers

Facebook Patches “Memory Disclosure Using JPEG Images” Flaws in HHVM Servers

Facebook has patched two high-severity vulnerabilities in its server application that could have allowed remote attackers to unauthorisedly obtain sensitive information or cause a denial of service just by uploading a maliciously constructed JPEG image… Continue reading Facebook Patches “Memory Disclosure Using JPEG Images” Flaws in HHVM Servers

3 Critical Zero-Day Flaws Found in PHP 7 — One Remains Unpatched!

Three critical zero-day vulnerabilities have been discovered in PHP 7 that could allow an attacker to take complete control over 80 percent of websites which run on the latest version of the popular web programming language.

The critical vulnerabilities reside in the unserialized mechanism in PHP 7 – the same mechanism that was found to be vulnerable in PHP 5 as well, allowing hackers to

Continue reading 3 Critical Zero-Day Flaws Found in PHP 7 — One Remains Unpatched!