Support for PHP 5.6 drops on December 31 – but a recent report found that almost 62 percent of websites are still using version 5.
Drupal is giving developers ample time to prepare for an update that patches a “highly critical” flaw because exploits might be developed within hours or days of disclosure.
Researchers have found sneaky encoded malware targeting WordPress and Joomla sites that pretends to be ionCube files.
Joomla on Tuesday patched a critical LDAP injection vulnerability that had lingered in the content management system for eight years. Attackers could use this bug to steal admin login credentials.