Ars Technica

Nasty bug with very simple exploit hits PHP just in time for the weekend

A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security researchers warned as they urged those affected to take ...
Bleeping Computer

Hackers use PHP exploit to backdoor Windows systems with new malware

Unknown attackers have deployed a newly discovered backdoor dubbed Msupedge on a university's Windows systems in Taiwan, likely by exploiting a recently patched PHP remote code execution vulnerability ...
CRN

Attacks Exploiting ‘Critical’ PHP Vulnerability Have Impacted US: Researcher

The remote code execution flaw affects Windows-based PHP installations, and was initially disclosed in June 2024. Exploitation of a critical-severity vulnerability affecting Windows-based PHP ...