Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Researchers Report Supply Chain Vulnerability in Packagist PHP Repository
Malware and Vulnerabilities
October 04, 2022
The Hacker News
Tracked as CVE-2022-24828 (CVSS score: 8.8), the issue has been described as a case of command injection and is linked to another similar Composer bug (CVE-2021-29472) that came to light in April 2021, suggesting an inadequate patch.
Read More
Supply Chain Vulnerability
Packagist
PHP package
composer
PHP Package Manager
Publisher
Previous
Malicious Tor Browser spreads through YouTube
Malware and Vulnerabilities
Next
CISA Orders Federal Agencies to Regularly Track Network ...
Govt., Critical Infrastructure
/https://cyware-ent.s3.amazonaws.com/image_bank/b5cd_shutterstock_1225879885.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/4a61_CywareCISA.jpg)
