WELCOME

The bug was discovered in a security vulnerability in PHP's

Oct. 4, 2017 by Ella Pickett

The bug was discovered in a security vulnerability in PHP's PHP database. Users who were infected with this vulnerability could use a malicious script that allowed the PHP database to be hijacked. It could also allow attackers to perform arbitrary code execution and exploit the vulnerability.

The flaw was identified by engineers at CIO, a security company that helps developers develop new web applications. The CVE-2019-6340 vulnerability was identified as a direct vulnerability in PHP's PHP core, which makes it vulnerable to an attack.

"Symfony's security team has been working closely with the CIO team and we are fully aware that this could occur," the advisory said.

A vulnerability in the PHP core does not require user authentication and could allow attackers to bypass authentication processes for the PHP application by using a known vulnerability in PHP. The vulnerability could allow an attacker to bypass authentication and gain access to the web without a user's knowledge.

"The vulnerability is being exploited so that vulnerable websites like Drupal can be used as a source of malicious code," said the advisory. "In this situation, Drupal's users can be vulnerable to the attack and exploit this exploit to gain access to their favorite web applications through a known vulnerability."

"This attack is highly critical for anyone who uses Drupal for their own personal or company security and is critical to our users and our communities," the advisory said.