michaelcp / skipfish

Automatically exported from code.google.com/p/skipfish
Apache License 2.0
0 stars 0 forks source link

PHP Issues? #98

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago
What PHP Issues are not being addressed?  In the limitations, i see:

    * More specific PHP tests (eval injection, RFI). 

Can you provide more information as to what ISNT being checked? We basically 
want to make sure that it's sufficiently checking for PHP vulnerabilities...

thanks!

Original issue reported on code.google.com by kasey.mc...@gmail.com on 1 Nov 2010 at 6:59

GoogleCodeExporter commented 9 years ago
Please don't file questions as bugs; feel free to drop me an e-mail instead.

The two classes of bugs that I want to have implemented are named in that 
bullet point: incorrect use of eval() leading to the ability to inject PHP 
code; and remote file inclusion.

Original comment by lcam...@gmail.com on 1 Nov 2010 at 7:04