WebApp Sec mailing list archives

Re: Paper of insecure in PHP... and doubt in SQL-Injection

From: Emanuele Rocca <emanuele () wildcard it>
Date: Thu, 20 Feb 2003 17:02:30 +0100

Il giorno Thu, 20 Feb 2003 10:52:43 -0300
<sekure () hadrion com br>  disse:

Hi,

I'm searching a good paper or collection of papers that describe
problems of PHP with real examples and eploitations.


I think that "a study in scarlet" is a good starting point.

http://www.securereality.com.au/studyinscarlet.txt

regards,
-- 
Emanuele Rocca             emanuele () wildcard it  emarocca () libero it
(8) It is more complicated than you think.
                       - RFC 1925, Fundamental Truths of Networking
Key fingerprint = DEE8 50F8 1C5A F820 8DD6 29D3 0BA0 EE03 EAF1 9B60

Current thread:

Paper of insecure in PHP... and doubt in SQL-Injection sekure (Feb 20)
- Re: Paper of insecure in PHP... and doubt in SQL-Injection Kevin Spett (Feb 20)
- Re: Paper of insecure in PHP... and doubt in SQL-Injection Emanuele Rocca (Feb 20)
- <Possible follow-ups>
- Re: Paper of insecure in PHP... and doubt in SQL-Injection zeno (Feb 20)
- Re: Paper of insecure in PHP... and doubt in SQL-Injection Jason Stout (Feb 20)
- Re: Paper of insecure in PHP... and doubt in SQL-Injection bloodk (Feb 21)