One of the largest adult websites, Pornhub, has been hacked, with the perps raking in $22,000 for the accomplishment. Security researchers Dario Weißer (@haxonaut), cutz and Ruslan Habalov (@evonide) attacked what Pornhub is built upon—PHP—and ended up successfully breaking it. They found two use-after-free vulnerabilities in PHP’s “garbage collection” algorithm, which are remotely exploitable over PHP’s unserialize function.
View full story
Original source: Infosecurity Magazine