Serious PHP vulnerabilities announced

[DarkHand]

Slashdot article here.

"The Hardened PHP Project has announced several serious and according to them, easy-to-exploit vulnerabilities within PHP. A flaw within the function unserialize() is rated as very critical for millions of PHP servers, because it is exposed to remote attackers through lots of very popular webapplications. The list includes forum software like phpBB2, WBB2, Invision Board and vBulletin. It is time to upgrade now."

 

[Battle Pope]

Nobody's perfect.

 

[Sabz5150]

Quick, pwn some admin power before B has a chance to upgrade!

Type, tappity, hack, type, type, pwn.

 

[posol]

we upgraded php 2 days ago. you're late.

 

[Battle Pope]

If there's one good thing about B, it's that at least he keeps the site running... good.... well... better... more better.

 

[Prowler]

i'm so gonna ctrl-alt-del this webpage. whatcha gonna do then hax0rzz?

 

[posol]

i'll 403 yoru ass

 

[jamesA]

I thought you were talking about the insurance carrier PHP, which I now use...

I was scared there for a second, then I saw it was something to do with all this internet jargon.