New .htaccess injector threat on Joomla and WordPress websites redirects to malicious websites.
Drupal, Typo3 and Joomla are all impacted by the bug.
The Jmail Breaker attack leverages an old vulnerability in Joomla! along with a newly found flaw in the mail module.
Support for PHP 5.6 drops on December 31 – but a recent report found that almost 62 percent of websites are still using version 5.
Drupal is giving developers ample time to prepare for an update that patches a “highly critical” flaw because exploits might be developed within hours or days of disclosure.
Researchers have found sneaky encoded malware targeting WordPress and Joomla sites that pretends to be ionCube files.
Joomla on Tuesday patched a critical LDAP injection vulnerability that had lingered in the content management system for eight years. Attackers could use this bug to steal admin login credentials.