Hardened-PHP Project: WordPress Vulnerability Advisories (XSS & Trackbacks)
The Hardened-PHP Project has posted two new advisories today, both dealing with WordPress issues - one is a trackback problem with decoding the charset and the other an XSS vulnerability. The first...
View ArticleDavey Shafik's Blog: ext/dom and libxml2 charset and entities behaviors
Davey Shafik points out a second option for the saveXML function of the DOM functionality in PHP - an option to restrict the use of "empty tags". This argument currently only supports one value which...
View Article
More Pages to Explore .....
