PHP blunders with random numbers

Posted on Internet.com See other posts from Internet.com
Published on Tue, 30 Mar 2010 04:00:00 +0100 Indexed on 2010/03/31 4:13 UTC
Read the original article Hit count: 433

Filed under:
<b>The H Open:</b> "Security expert Andreas Bogk warns that, despite recent PHP improvements, the session IDs of users who are logged into PHP applications remain guessable. Upon close examination, the alleged improvements display frightening weaknesses."

© Internet.com or respective owner