News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

SitePoint PHP Blog:
Top 7 PHP Security Blunders
December 21, 2005 @ 07:04:07

On the SitePoint PHP blog today, Pax Dickinson shares with us the "Top 7 PHP Security Blunders" as he sees them.

In this article, I'll detail many of the common PHP programming mistakes that can result in security holes. By showing you what not to do, and how each particular flaw can be exploited, I hope that you'll understand not just how to avoid these particular mistakes, but also why they result in security vulnerabilities. Understanding each possible flaw will help you avoid making the same mistakes in your PHP applications.

His list includes:

  • Unvalidated Input Errors
  • Access Control Flaws
  • Cross Site Scripting (XSS) Flaws
  • Data Handling Errors

There's more listed, so be sure to check out the rest of the article - each item is explained and on some, sample code is included where it makes sense...

0 comments voice your opinion now!
top seven security blunders input error xss access control top seven security blunders input error xss access control


blog comments powered by Disqus

Similar Posts

Builder.com.au: Control your scripts with command-line PHP

Sean Coates\' Blog: Security and...Driving? (and Hiring)

PHP Security Blog: How you should never configure your logging in PHP

Pierre-Alain Joye's Blog: Howto use a single php.ini for cli/cgi with htscanner, use 0.7.0 or later

Zend Developer Zone: PHP Security Tips #8 & #9


Community Events

Don't see your event here?
Let us know!


framework interview performance release conference version laravel series php7 community library application symfony2 api introduction opinion voicesoftheelephpant extension example podcast

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework