Webmaster Forum
Go Back   Webmaster Forums UK SEO SEM Webmaster Community Forum - UKWW > Web Design and Website Development > Programming
Commons Script Security Problems Commons Script Security Problems
Register FAQ Members List Downloads Calendar Today's Posts Webmaster Resources Webmaster Blogs

UK Web Hosting
UK Web Hosting 		Website Hosting
Website Hosting 		UK One Way
UK One Way 		Free Website Thumbnail Creator
 
Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 02-07-2008, 06:35 PM
temi's Avatar
Facilitator
Recent Blog: Brown to call for more green cars
  
Join Date: Jun 2003
Location: London, England.
Posts: 11,434
iTrader: 16 / 100%
Thanks: 2
Thanked 9 Times in 2 Posts
Nominated 0 Times in 0 Posts
TOTW/F/M Award(s): 0
temi is just really nicetemi is just really nicetemi is just really nicetemi is just really nicetemi is just really nice
Send a message via ICQ to temi
Default Commons Script Security Problems
I would like experienced programmers and script users to help with suggestion about commons security issues the script should be tested for. Its and eCommerce application coded in PHP. Here are two security problems to start the ball rolling.
- Cross site scripting attack
- Script Injection
__________________

* Build a shopping cart for your business with eCommerce software UK
* BossCart.com can build you a
Bespoke shopping cart
::
Add Eco sites to The Green Directory free of charge.
Digg this Post!Add Post to del.icio.usStumble this Post!Wong this Post!
Reply With Quote
  #2 (permalink)  
Old 02-07-2008, 06:53 PM
Bagi Zoltán's Avatar
Boss Cart consultant
Recent Blog: Internet Shopping in UK Grows by 38%
  
Join Date: Feb 2007
Location: Veszprém, Hungary
Posts: 1,554
iTrader: 9 / 100%
Thanks: 0
Thanked 0 Times in 0 Posts
Nominated 0 Times in 0 Posts
TOTW/F/M Award(s): 0
Bagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud ofBagi Zoltán has much to be proud of
Default
  • cross site scripting (xss)
  • sql injection
  • code execution
  • directory traversal
  • file inclusion
  • script source disclosure
  • CRLF injection
  • cross frame scripting
  • php code injection
  • XPath injection
  • FUll path disclosure
  • LDAP injection
  • Cookie manipulation
  • URL redirection
The list above contains the scanning options of Acunetix Web Vulnerability Scanner sofware.
__________________
Time may come when you will need a shopping cart
mérleg keresőoptimalizálás
Digg this Post!Add Post to del.icio.usStumble this Post!Wong this Post!
Reply With Quote
  #3 (permalink)  
Old 02-07-2008, 07:06 PM
temi's Avatar
Facilitator
Recent Blog: Brown to call for more green cars
  
Join Date: Jun 2003
Location: London, England.
Posts: 11,434
iTrader: 16 / 100%
Thanks: 2
Thanked 9 Times in 2 Posts
Nominated 0 Times in 0 Posts
TOTW/F/M Award(s): 0
temi is just really nicetemi is just really nicetemi is just really nicetemi is just really nicetemi is just really nice
Send a message via ICQ to temi
Default
Brilliant list Bagi, thanks very much. Anyone got more to add?
__________________

* Build a shopping cart for your business with eCommerce software UK
* BossCart.com can build you a
Bespoke shopping cart
::
Add Eco sites to The Green Directory free of charge.
Digg this Post!Add Post to del.icio.usStumble this Post!Wong this Post!
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »
Webmaster Resources
UK Web Hosting
UK WW SEO Tools
Free site submission
Web Directory
 
Advertisement
Get top 10 exposure
 
Site Of the Month
BizzFace
Nominate site of the month
 
Tag Cloud
2 columns admins wanted advice article submistion bbpress best site bid bidding directory blog post british telecom broadband butterflies chip maker concentration coupon code digg directories submission directory directory network domain for sale domain name dzone ecommerce ecommerce poll fibre optic forum forum posting free free download free web hosting generate revenue google google serps icq instant messenger intel internet internet spending james in london jokes keywords limitations link exchange linux and windows server microsoft mod modeling monopoly msn music online newbie nominate online spending owg in london paid forum posting photography php review review website scripts search engine seo site promotion skype social bookmarking speed cameras submission theme web hosting win a network yahoo

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On
Forum Jump



All times are GMT. The time now is 08:44 PM.

UK Webmaster World Forums - Internet marketing, web development, domain names, SEO contest and discussuons.
Subscribe to our feeds   Subscribe to our feeds
UK Webmaster forums offer discussions on webmaster related issues including web hosting, domain names, search engine marketing and white hat SEO tactics for Google, Yahoo, MSN and other search engines and directories - Contact Us - Archive - Top - Advertise on UK SEO Forums - Sitemap

Powered by vBulletin® Version 3.7.0
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.1.0

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150