Security News

PHP, Python still fail to spot revoked TLS certificates (Help Net Security)
2016-04-01 16:04

In 2012, a group of researchers demonstrated that SSL certificate validation is broken in many applications and libraries, and pointed out the root causes for that situation: badly designed APIs...

86% of PHP-based apps contain at least one XSS vulnerability (Help Net Security)
2015-12-04 08:53

Four out of five applications written in PHP, Classic ASP and ColdFusion that were assessed by Veracode failed at least one of the OWASP Top 10. Given the volume of PHP applications developed for the ...