Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

10 ソーシャルブックマーク3

808 views

Published on

セキュリティ

Published in: Education, Technology
  • Be the first to comment

  • Be the first to like this

10 ソーシャルブックマーク3

  1. 1. PHP (10)! 3
  2. 2. Web Web   Web   XSS   SQL   10.4.18 (C)
  3. 3. XSS 1.  Javascript   <script  type=“text/javascript”>   //   </script>   <?php   html  htmlspecialchars($_POST   [“hoge”],  ENT_QUOTES)   ?> ex.  <  >  ‘  “   10.4.18 (C)
  4. 4. SQL 2.MySQL SQL SQL   <?php        $sql  =  “SELECT  *  FROM  tbl   WHERE  id  =  ‘’{$_POST[“hoge”]}”   ?>   <?php   sql  $var  =  mysql_real_escape_string   ($_POST[“hoge”);   ?> ex.  ‘  `   10.4.18 (C)
  5. 5. •  •  •  SQL   PEAR_MDB2,  PDO   cakePHP   10.4.18 (C)

×