PHP blunders with random numbers
Posted
on Internet.com
See other posts from Internet.com
Published on Tue, 30 Mar 2010 04:00:00 +0100
Indexed on
2010/03/31
4:13 UTC
Read the original article
Hit count: 433
Filed under:
<b>The H Open:</b> "Security expert Andreas Bogk warns that, despite recent PHP improvements, the session IDs of users who are logged into PHP applications remain guessable. Upon close examination, the alleged improvements display frightening weaknesses."
© Internet.com or respective owner