Threat Post

Researchers Call for Ban on PHP SuperGlobal Variables

Researchers urge developers to ban PHP SuperGlobal variables in applications. These variables are wide open to remote code execution, remote file inclusion and security bypasses. The ease with which ...
Ars Technica

Passing variables from PHP to Perl

I have a PHP frontend which passes variables with the putenv function (code made by me).<BR><BR>while (list($key,$value)=@each($userlist)) {<BR> putenv("variable_$key ...
Computerworld

PHP 5.3.10 fixes critical remote code execution vulnerability

The PHP Group released PHP 5.3.10 on Thursday in order to address a critical security flaw that can be exploited to execute arbitrary code on servers running an older version of the Web development ...