News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

NetCraft.com:
PHP Apps A Growing Target for Hackers
February 01, 2006 @ 07:48:27

According to this new article from Netcraft, PHP applications are becoming more and more at risk for hacking attempts.

Security holes in PHP-based content management and forum apps are an increasingly active front in Internet security, as hackers target unpatched weaknesses. The latest example is Monday's hack of chip maker AMD's customer support forums, in which an older version of Invision Power Board was compromised and used to distribute malware using the Windows Metafile (WMF) exploit.

While Windows flaws like the WMF vulnerability are useful to hackers assembling armies of compromised desktop computers, security holes in PHP applications provide access to more powerful servers hooked directly to high-speed network connections.

They go on to talk about the growth of CMSs that PHP has fueled - both the good and the bad - and how a less than religious application of patches to those CMSs can cause big headaches down the road.

It is good, though, that they make the distinction:

Most of the security issues with PHP-driven programs are found not in PHP itself, but rather in the libraries and applications built atop the server-side scripting language.

0 comments voice your opinion now!
application growing target hackers content management system application growing target hackers content management system


blog comments powered by Disqus

Similar Posts

Sanisoft Blog: Theming your CakePHP apps (V1.2)

PHPBuilder.com: The PHP Content Management/Framework Upgrades in ExpressionEngine 2

Community News: Ning Turns Two

Enrise Blog: Debugging Your Web Application with TCPDump and Wireshark

Stuart Herbert's Blog: Arguments From The Boardroom, Not The Bedroom


Community Events











Don't see your event here?
Let us know!


composer opinion hhvm application install package introduction symfony2 podcast example performance framework security component facebook hack release unittest series language

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework