Hello Friends, today we’ll see malicious file upload prevention in PHP. If in our web application there is file upload feature then we should add this feature with precautions because this is a very easy way for any attacker to inject malicious code in our application.
Tag: Web Security
Cross-Site Scripting Prevention in PHP
Hello Friends, Today we'll see Cross-Site Scripting Prevention in PHP. Cross-Site Scripting (XSS) is a web application Vulnerability in which attackers injects client site malicious scripts into web pages which then executes inside victims browser. To Prevent Cross-Site Scripting here we'll use htmLawed. htmLawed is PHP library to purify &
Click-Jacking Prevention in PHP
Hello friends, today we are going to learn Click-Jacking Prevention in PHP. Click-Jacking is technique by which user is tricked into clicking on something that is different from what user perceives, thus which can then reveal confidential information or can take control of their computer. In PHP we can prevent
Cross-Site Request Forgery (CSRF) Prevention in PHP
Hello, friends today we are going to learn Cross-Site Request Forgery (CSRF) Prevention in PHP by using random token in each request. In Cross-Site Request Forgery (CSRF) attack the victim unintentionally sends web request that takes advantage of their logged in session on a particular site to leak server data,