Critical remote code execution flaw patched in Packagist PHP package repository

Critical remote code execution flaw patched in Packagist PHP package repository Maintainers of Packagist, the largest PHP package repository, have recently addressed a critical remote code execution vulnerability. Packagist is the default package host behind Composer, it has over 435 million package installs. The vulnerability was reported by the security researcher Max Justicz, the expert discovered that the “Submit Package” input field for submitting new PHP packages via the package […] The post Critical remote code execution flaw patched in Packagist PHP package repository appeared first on Security Affairs. Read More At -> https://blog.cripperz.sg/2018/09/03/critical-remote-code-execution-flaw-patched-in-packagist-php-package-repository/