Researchers have disclosed details about a now-patched high-severity security flaw in Packagist, a PHP software package repository, that could have been exploited to mount software supply chain attacks. "This vulnerability allows gaining control of Packagist," SonarSource researcher Thomas Chauchefoin said in a report shared with The Hacker News. Packagist is used by the PHP package manager
from The Hacker News https://ift.tt/YCzexKa
Researchers Report Supply Chain Vulnerability in Packagist PHP Repository
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment