News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

ThinPHP Blog:
Understanding successful tracing of security vulnerabilities
September 21, 2006 @ 07:34:33

In this new post on the ThinkPHP blog, there's more talk about their Chorizo! security scanner and how, with a little help from their Morcilla product, you can find problems easily. Now, interpreting them is another matter, so they show you a simple way to determine just what went wrong.

Sometimes it's not very easy to check if a vulnerability occured where Morcilla told you it occured. In order to pinpoint this issue, it is neccessary that you get a deeper look to the callstack of all the functions that were involved calling the SQL abstraction layer.

They include a screenshot of how the functionality will (in the upcoming version) work in the case of a MySQL SQL injection problem.

0 comments voice your opinion now!
vulnerabilities security chorizo morcilla trace screenshot sql injection vulnerabilities security chorizo morcilla trace screenshot sql injection


blog comments powered by Disqus

Similar Posts

Chris Shiflett\'s Blog: The addslashes() Versus mysql_real_escape_string() Debate

Derick Rethans' Blog: Pimping Xdebug stack traces

CodeSnipers.com: Interview with Chris Shiflett

Geeks Not Nerds Blog: Rolling your own Blog Backend from Scratch Part 1

Sanisoft Blog: Email component in CakePHP is now Header Injection safe


Community Events

Don't see your event here?
Let us know!


php7 series list example symfony project introduction api opinion part2 laravel community language composer yii2 interview application framework conference podcast

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework