LanceT Posted February 3, 2007 Share Posted February 3, 2007 With my new script, i'm hoping to cut down on any security loopholes. What are some of the major security loopholes that PHP and Mysql have? My new script is a forum community type script, so think about that. I'm new to coding so I'm not familiar with how scripts were patched in the past. Thanks for your input. Link to comment https://forums.phpfreaks.com/topic/36872-hacking-methods-other-than-sql-injection/ Share on other sites More sharing options...
corbin Posted February 3, 2007 Share Posted February 3, 2007 If you allow file uploads be careful with those and don't allow .php files to be uploaded... The best way to do it is to only allow certain files to be uploaded. Also, be sure to screen user input in EVERYTHING... In forum posts and sigs and things like that you'll probably want to block out HTML and JS so that users cannot put either of those... Basically my advice is check all user input... Link to comment https://forums.phpfreaks.com/topic/36872-hacking-methods-other-than-sql-injection/#findComment-175908 Share on other sites More sharing options...
hvle Posted February 3, 2007 Share Posted February 3, 2007 html tag injection is not a hack but could mess up your display. Link to comment https://forums.phpfreaks.com/topic/36872-hacking-methods-other-than-sql-injection/#findComment-175911 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.