News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Rochak Chauhan's Blog:
Top Ten Security Vulnerabilities in PHP Code
August 04, 2008 @ 12:58:10

Rochak Chauhan has come up with a list of ten things, some security problems that could be lurking in your applications waiting to pop up at the worst time. Here's his list:

  • Unvalidated Parameters
  • Broken Access Control
  • Broken Account and Session Management
  • Cross-Site Scripting (XSS) Flaws
  • Buffer Overflows
  • Command Injection Flaws
  • Error Handling Problems
  • Insecure Use of Cryptography
  • Remote Administration Flaws
  • Web and Application Server Misconfiguration

Each item on the list has a bit of detail (and sometimes some code) to help point out the problem. Some of them even have references to external sources and packages to help you solve the problems.

0 comments voice your opinion now!
security vulnerabilities list example references


blog comments powered by Disqus

Similar Posts

Kevin Schroeder's Blog: A little more advanced ZF2 EventManager usage

Zend: Zend/PHP Conference & Expo 2007 Speakers List Posted

WebReference.com: Working With Forms

Developer Tutorials: Debugging PHP code using debug_backtrace

PHP Security Blog: Int. PHP Conf 2005 - A sniffer\'s paradise


Community Events

Don't see your event here?
Let us know!


threedevsandamaybe podcast extension library unittest api feature series release wordpress introduction development laravel interview laravel5 voicesoftheelephpant opinion framework community language

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework