Secure Coding Standards in PHP
Added on 2023-05-27
6 Pages1039 Words91 Views
qwertyuiopasdfghjklzxcvbnmqw
ertyuiopasdfghjklzxcvbnmqwert
yuiopasdfghjklzxcvbnmqwertyui
opasdfghjklzxcvbnmqwertyuiop
asdfghjklzxcvbnmqwertyuiopasd
fghjklzxcvbnmqwertyuiopasdfgh
jklzxcvbnmqwertyuiopasdfghjkl
zxcvbnmqwertyuiopasdfghjklzxc
vbnmqwertyuiopasdfghjklzxcvb
nmqwertyuiopasdfghjklzxcvbnm
qwertyuiopasdfghjklzxcvbnmqw
ertyuiopasdfghjklzxcvbnmqwert
yuiopasdfghjklzxcvbnmqwertyui
opasdfghjklzxcvbnmqwertyuiop
asdfghjklzxcvbnmqwertyuiopasd
fghjklzxcvbnmqwertyuiopasdfgh
jklzxcvbnmrtyuiopasdfghjklzxcv
Secure Coding Standards in PHP
Report
2/15/2019
ertyuiopasdfghjklzxcvbnmqwert
yuiopasdfghjklzxcvbnmqwertyui
opasdfghjklzxcvbnmqwertyuiop
asdfghjklzxcvbnmqwertyuiopasd
fghjklzxcvbnmqwertyuiopasdfgh
jklzxcvbnmqwertyuiopasdfghjkl
zxcvbnmqwertyuiopasdfghjklzxc
vbnmqwertyuiopasdfghjklzxcvb
nmqwertyuiopasdfghjklzxcvbnm
qwertyuiopasdfghjklzxcvbnmqw
ertyuiopasdfghjklzxcvbnmqwert
yuiopasdfghjklzxcvbnmqwertyui
opasdfghjklzxcvbnmqwertyuiop
asdfghjklzxcvbnmqwertyuiopasd
fghjklzxcvbnmqwertyuiopasdfgh
jklzxcvbnmrtyuiopasdfghjklzxcv
Secure Coding Standards in PHP
Report
2/15/2019
Secure Coding Standards in PHP
Table of Contents
Introduction...........................................................................................................................................2
Cybercrime(s) due to Poor Coding........................................................................................................2
Secure Coding in PHP...........................................................................................................................3
Conclusion.............................................................................................................................................3
References.............................................................................................................................................5
1
Table of Contents
Introduction...........................................................................................................................................2
Cybercrime(s) due to Poor Coding........................................................................................................2
Secure Coding in PHP...........................................................................................................................3
Conclusion.............................................................................................................................................3
References.............................................................................................................................................5
1
Secure Coding Standards in PHP
Introduction
There are a number of different programming languages that have been developed. Each of
these programming languages comes with their own coding styles and standards. Security is
one of the primary factors that shall be considered while selecting a programming language
for a specific application or program. It is because poor coding may result in the occurrence
of information security threats and attacks (Hopkins, 2014). The report discusses the
cybercrimes that have occurred due to poor coding and brings out the secure coding standards
and guidelines for PHP programming language.
Cybercrime(s) due to Poor Coding
There are a number of cybercrimes that may occur due to poor coding. One such popular
example is spoofed mail. These are the cyberattacks that may be executed by exploiting the
PHP vulnerabilities in the poorly written code. These codes may facilitate the web application
in sending the fake mails to the users. The header information may be acquired from the code
and the value may then be passed on to the PHP function.
PHP Script to send fake mails (Sahu and Tomar, 2014)
The URL can be easily modified by the malicious entities in the poorly written code to send
the fake mails to the users. The confidential information may then be acquired from the users
which may be misused.
Remote File Creation (RFC) is another form of cyberattack that may occur due to poor
coding in PHP. It is the security vulnerability that may manipulate the root directory of the
server. Improper sanitization of the input values along with the poorly written code may give
shape to the attack. Remote File Inclusion (RFI) and Information Disclosure are the two other
forms of information security and privacy attacks that may occur due to the poorly written
PHP code.
2
Introduction
There are a number of different programming languages that have been developed. Each of
these programming languages comes with their own coding styles and standards. Security is
one of the primary factors that shall be considered while selecting a programming language
for a specific application or program. It is because poor coding may result in the occurrence
of information security threats and attacks (Hopkins, 2014). The report discusses the
cybercrimes that have occurred due to poor coding and brings out the secure coding standards
and guidelines for PHP programming language.
Cybercrime(s) due to Poor Coding
There are a number of cybercrimes that may occur due to poor coding. One such popular
example is spoofed mail. These are the cyberattacks that may be executed by exploiting the
PHP vulnerabilities in the poorly written code. These codes may facilitate the web application
in sending the fake mails to the users. The header information may be acquired from the code
and the value may then be passed on to the PHP function.
PHP Script to send fake mails (Sahu and Tomar, 2014)
The URL can be easily modified by the malicious entities in the poorly written code to send
the fake mails to the users. The confidential information may then be acquired from the users
which may be misused.
Remote File Creation (RFC) is another form of cyberattack that may occur due to poor
coding in PHP. It is the security vulnerability that may manipulate the root directory of the
server. Improper sanitization of the input values along with the poorly written code may give
shape to the attack. Remote File Inclusion (RFI) and Information Disclosure are the two other
forms of information security and privacy attacks that may occur due to the poorly written
PHP code.
2
End of preview
Want to access all the pages? Upload your documents or become a member.
Related Documents
Networking: Malicious Attacks, Social Engineering, Information Security Risks, Network Auditing, and Risk Assessment Managementlg...
|10
|3587
|73
Around the World: CRM Vendor Product Recommendationlg...
|9
|1445
|377