| PHP常见安全漏洞攻防研究 |
| |
| 引用本文: | 刘鹏,张玉清. PHP常见安全漏洞攻防研究[J]. 信息网络安全, 2011, 0(7): 33-36 |
| |
| 作者姓名: | 刘鹏 张玉清 |
| |
| 作者单位: | 1. 西安电子科技大学教育部计算机网络与信息安全重点实验室,陕西西安,710071
2. 中国科学院研究生院国家计算机网络入侵防范中心,北京,100049 |
| |
| 摘 要: | 文章总结了PHP脚本中广泛存在的代码注入漏洞及代码执行漏洞,并对其进行了分析.同时,在此基础上提出了预防这些漏洞的方案.最后,针对利用PHP开发安全的Web应用程序给出了一定的建议.
|
| 关 键 词: | PHP 漏洞 安全编程 Web应用程序 |
PHP Common Security Vulnerabilities Research |
| |
| LIU Peng , ZHANG Yu-qing. PHP Common Security Vulnerabilities Research[J]. Netinfo Security, 2011, 0(7): 33-36 |
| |
| Authors: | LIU Peng ZHANG Yu-qing |
| |
| Affiliation: | LIU Peng1,ZHANG Yu-qing2(1.The Key Lab of Computer Networks and Information Security of Ministry of Education,Xidian University,Xi'an Shanxi 710071,China,2.National Computer Networks Intrusion Protection Center,GUCAS,Beijing 100049,China) |
| |
| Abstract: | This essay summarizes the code injection vulnerabilities and code execution vulnerabilities in PHP script.Some preventive schemes on these vulnerabilities are also included in this paper.Finally some advices are given on how to use PHP in developing secure Web-applications. |
| |
| Keywords: | PHP vulnerability security program development web-application |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
