The Hacker News

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

Two Composer flaws (CVE-2026-40176, CVE-2026-40261) allow command execution via Perforce configurations, prompting urgent ...
GitHub

5_6_4.php

5.6.4. This release fixes several bugs and one CVE related to unserialization. All PHP 5.6 users are encouraged to upgrade to this version.