PHP is one of the most used server-side programming
language, if we go by statistics then more than 75% of web servers are currently
using this technology.
Being an open source technology which has grown over the
period of time, it has a large community of libraries that contribute to the
security (or otherwise) of programming in PHP. All three aspects (language,
framework, and libraries) need to be taken into consideration when trying to
secure a PHP site.
So as a pentestor, it is utmost necessary to know about the
language and its pitfalls which develops the security issue for the web application
running with this technology.
Henceforth, I will demonstrate the examples before you which
will help you to understand the language and its security issues. Hope it will be
helpful to understand the context of a payload before applying it blindly.
Stay tuned!!!
thanx for bringing this into attention... as this is very essential information for beginners who are into development and into application security....
ReplyDeleteThanks for appreciating !!I will now add working examples to demonstrate the pitfalls
ReplyDelete