Command injection flaw in PHP Composer allowed supply-chain attacks

29 April 2021

A vulnerability in the PHP Composer could have allowed an attacker to execute arbitrary commands and backdoor every PHP package. The maintainers of the PHP Composer package have addressed a critical vulnerability, tracked as CVE-2021-29472, that could have allowed an attacker to execute arbitrary commands and establish a backdoor in every PHP package.

Read full article on Security Affairs

Date:

29 April 2021

Categorie(s):

NEWS

Tag(s):

Composer, PHP, Programming, Programming Languages, Web Development

IT and Cybersecurity Jobs in the Age of Emerging AI Technologies19 April 2024
The Importance of Cyber Hygiene for Businesses19 April 2024
Tuta Mail (Tutanota) Accuses Google of Censoring Its Search Results19 April 2024
Alarming Decline in Cybersecurity Job Postings in the US19 April 2024
Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware!19 April 2024