News Feed
Jobs Feed
Sections




News Archive
Jemjabella.co.uk:
Spotting Insecure Scripts
by Chris Cornutt August 19, 2006 @ 15:36:59

On Jemjabella.co.uk, there's a quick post with a few helpful hints of spotting the insecurity inside of some scripts.

With the current surge in "hackings" (or rather: script kiddies exploiting known holes to deface websites that don't support their view on the war) I've been going through a lot of scripts to find common and easy to fix vulnerabilities. With my fingers crossed, and perhaps a naive hope that people don't release scripts with massive holes anymore, I've been sorely disappointed.

They list out a few different things to watch out for, including potential SQL injection points and the unchecked inclusion of files via include(). It's some pretty basic stuff, so don't expect much new from the post, but it's a good reminder of some of the simple things we all, as developers, need to watch out for.

1 comment voice your opinion now!
insecure scripts sql injection include filter input insecure scripts sql injection include filter input


blog comments powered by Disqus

Similar Posts

PHPBuilder: Pro PHP Security / Preventing SQL Injection, Part 2

Pierre-Alain Joye's Blog: ext/filter, API frozen (!) and fixes, 0.11.0 is out

Marcelo Gornstein's Blog: Writing PHP applications with Doctrine2 as ORM and Ding as DI container

Ulrich Kautz: PHP Validation & Sanitization

Sanisoft Blog: Inspekt - put a firewall in your PHP applications


 Community Events











Don't see your event here?
Let us know!

development functional release introduction opinion community example podcast conference series zendframework2 testing framework code tool unittest phpunit interview application language

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework