Ref# MS-ISAC | Date: Sep 6th 2019

---

Description

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has recently released an Advisory for multiple Hypertext Preprocessor (PHP) vulnerabilities. It is recommended that you take the necessary precautions by ensuring your products are always updated.

For more information on the MS-ISAC released advisory and updated versions of PHP you can follow these urls:

Advisory – https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2019-087/

PHP updated downloads – https://www.php.net/downloads.php#gpg

 

The Guyana National CIRT recommends users and administration to review these updates and to apply them where necessary.

Reference

• MS-ISAC Releases Advisory on PHP Vulnerabilities (US-Cert)

          https://www.us-cert.gov/ncas/current-activity/2019/09/05/ms-isac-releases-advisory-php-vulnerabilities