Ciphersweet, Fast searchable field-level encryption for PHP projects

0
CipherSweet is a backend library developed by Paragon Initiative Enterprises for implementing searchable field-level encryption. The library come to answer the question "How do we securely encrypt database fields but still use these fields in...

Symfony security : Disclosure of uploaded files full path

0
Fabien Potencier have just published a new security issue CVE-2018-19789 related to the disclosure of uploaded files full path that affect versions 2.7.0 to 2.7.49, 2.8.0 to 2.8.48, 3.0.0 to 3.4.19,...

PHP Security Advent Calendar 2018

0
RipsTech launched for the third year in a row the PHP security Advent Calendar 2018, and this year will be analyzed security bugs in the most widespread WordPress plugins. The first two...

SensioLabs Security Checker Version 5 recommended

0
If you are using SensioLabs Security Checker, then make sure you are using only the version number five, recommended Fabien Potencier. https://twitter.com/fabpot/status/1065864144732241920?s=09 The SensioLabs Security Checker is a command line tool that checks...

HTML5 Security Realities

0
Brad Hill from Paypal, shared a very interesting slides that he presented during W3Conf 2013, which was held in San Fransisco on February 21, and 22. In the presentation you can find real...

Essential PHP Security and its web companion

0
Essential PHP Securityby Chris ShiflettChris Shiflett have just announced the launch of PHPSecurity.org, the companion web site for his new book, Essential PHP Security. I have already announced the launch of...

The Spanner Blog : Bypassing XSSAuditor

0
The spammer blog posted about bypassing XSS Auditor, a tool built-in Chrome and IE and enabled by default to prevent XSS attacks or just doing some weird things to your page....

Anthony Ferrara: Preventing CSRF Attacks

0
Anthony Ferrara wrote on his blog few steps to prevent CSRF attacks, also as a follow-up to a discussion previously started on this blog and on twitter also. First he defined...

Facebook Like Clickjacking Vulnerability

0
Eric Kerr pointed in his blog to a vulnerability in Facebook like button which basically allow an attacker to trick you into Liking something without your discretion. How the attack works: 1....
php-security

Top PHP Security and Malware Scanners

0
Hope you will are not coming to this page the day you are hit by a malware ! Because the day you discover that your server is compromised by a malware...

Social Media

1,076FansLike
1,385FollowersFollow
2,647FollowersFollow
9SubscribersSubscribe

Latest articles

Get Started with Laravel Volt: A Free Full Stack Laravel App...

0
Laravel Volt is an admin dashboard template that offers a comprehensive design and development toolbox for personal and commercial projects. It comes with handcrafted...