安全 (Security)

常见漏洞

• XSS(Cross-site scripting)
• SQL Injection
• Command Injection
• Code Execution
• File Disclosure
• File Inclusion
• CSRF(Cross-site request forgery)
• Path Traversal
• Code injection

相关资源

• OWASP (Open Web Application Security Project)
• Survive The Deep End: PHP Security
• CVE List
• RIPS 静态代码分析工具
• Freebuf
• 乌云