Code Injection Vulnerabilities Explainedby Wojjie (2004-07-30)
There has been a sudden increase of attacks on sites that have Code Injection vulnerabilites. Code Injection is a term used when code is injected straight into a program/script from an outside source for execution at some point in time. These type of vulnerabilities may be many times worse than any other vulnerability, since the security of the website, and possibly of the server, is compromised.
Common Mistakes and their Solutionsby Wojjie (2004-05-11)
About various common vulnerabilities found in PHP sites, and solutions on how to prevent them.
Cross-Site Scriptingby Wojjie (2004-05-12)
GET/POST Variable Manipulationby Wojjie (2004-05-13)
When a visitor is able to cheat the website by modifying GET/POST variables that contain sensitive information and therefore change things that he/she should not be able to.
SQL Injectionby Wojjie (2004-05-11)
SQL Injection is when a visitor injects SQL code that manages to get processed by the SQL server.