Notepad++: Security update against code smuggling vulnerability

Notepad++ improves security mechanisms and closes a new vulnerability that allows attackers to execute malicious code.
InfoWorld

Open source code libraries suffer from vulnerabilities

A recent study found that more than a third of 1,261 open source libraries had a known vulnerability and about a quarter of the downloads were tainted A study of how 31 popular open source code ...

Exploit available for new Chrome zero-day vulnerability, says Google

Threat actors now have the ability to exploit a new zero-day vulnerability in the Chrome browser, Google has advised IT ...
Computerworld

PHP 5.3.10 fixes critical remote code execution vulnerability

The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers running an older version of the Web development ...

Contrast Security Announces Integration with ServiceNow to Streamline Application and API Vulnerability Management

Contrast Security, ADR and Runtime Security leader, today announced an integration with ServiceNow Application Vulnerability Response (AVR). The integration gives joint customers better visibility ...
CSO Online

Flaws in four popular VS Code extensions left 128 million installs open to attack

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.