Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
PHP apps: Security's Low-Hanging Fruit
Kelly Martin, 2007-01-08

PHP has become the most popular application language on the web, but common security mistakes by developers are giving PHP a bad name. Here's how PHP coding errors have become the new low-hanging fruit for attackers, contributing to the phishing problems on the web.

Submit Comment Mode:
Name:
Subject:
Message:
 
  Enter the characters that appear above
 
PHP apps: Security's Low-Hanging Fruit 2007-01-09
Anonymous
Set allow_furl_open=Off to disable remote file inclusions, but local file inclusions, especially of web logs files, will also lead to offensive code execution, as I am sure you are perfectly aware.

The real problem with PHP is its simplicity. Anyone *without any software writing skills whatsoev...

[ more ]  




 

Privacy Statement
Copyright 2008, SecurityFocus