Tag: Web Development

Researchers Defeat Content Security Policy Protections via HTML Injection

security researchers have demonstrated a practical method to bypass these protections by combining HTML injection, CSS-based nonce leakage, …

4 July 2025

Cyber Security News, HTML, Injections, Researchers, Web Development
Critical 9.8 PHP flaw exploited in US, Japan and Singapore

A critical 9.8 PHP flaw that was originally found exploiting Japanese organizations was observed expanding its malicious activities to …

10 March 2025

Critical, PHP, Programming, Programming Languages, Web Development
Express 5.0 Released, Focuses on Stability and Security

The Express.js team has released version 5.0.0, 10 years after the first major version release in 2014. The release focuses on stability …

11 January 2025

Development, Express, IT, Stability, Web Development
New “DoubleClickjacking” Exploit Bypasses Clickjacking Protections on Major Websites

Threat hunters have disclosed a new “widespread timing-based vulnerability class” that leverages a double-click sequence to facilitate …

1 January 2025

Clickjacking, New, Web Development, Web Frameworks, Websites
WordPress Mandates Two-Factor Authentication for Plugin and Theme Developers

WordPress.org has announced a new account security measure that will require accounts with capabilities to update plugins and themes to …

12 September 2024

Developers, Open Source, Plugins, Themes, Web Development
Hackers Exploit PHP Vulnerability to Deploy Stealthy Msupedge Backdoor

A previously undocumented backdoor named Msupedge has been put to use against a cyber attack targeting an unnamed university in Taiwan. …

20 August 2024

Backdoors, PHP, Programming, Programming Languages, Web Development
PHP bug executes RCEs, cryptominers and DDoS attacks

Not long after a new PHP bug was disclosed in the late spring, Akamai researchers observed numerous attempts to exploit the vulnerability, …

11 July 2024

Network Security, PHP, Programming, Programming Languages, Web Development
Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack

Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and …

26 June 2024

Malware, Polyfill, Security Pro, Vulnerability, Web Development
Ransomware attackers quickly weaponize PHP vulnerability with 9.8 severity rating

Ransomware criminals have quickly weaponized an easy-to-exploit vulnerability in the PHP programming language that executes malicious code …

15 June 2024

PHP, Programming, Programming Languages, Ransomware, Web Development
TellYouThePass Ransomware Exploits Critical PHP Flaw, Patch NOW

Urgent alert for PHP users: Update your server immediately to protect against the newly exploited CVE-2024-4577 by TellYouThePass …

11 June 2024

IT, PHP, Programming, Programming Languages, Web Development
PHP flaw exploited by TellYouThePass ransomware campaign

Attackers were observed leveraging a critical remote execution vulnerability in PHP to compromise servers and deploy malware that’s part …

11 June 2024

IT, PHP, Programming, Programming Languages, Web Development
Nasty bug with very simple exploit hits PHP just in time for the weekend

A critical vulnerability in the PHP programming language can be trivially exploited to execute malicious code on Windows devices, security …

7 June 2024

IT, PHP, Programming, Programming Languages, Web Development

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/tag/web-development/page/2","queryId":2}

●●●