International PHP Conference
The Conference for PHP and Web Development

Taint checking in PHP: what do you really send into your database?

Session
Until the conference starts:
✓ Arduino Starter Kit or Amazon Echo Dot for free
✓ Group discount
✓ 2 in 1 conference special
Register now
Bis Konferenz­beginn:
✓ Arduino Starter Kit oder Amazon Echo Dot gratis
✓ Kollegenrabatt
✓ 2-in-1-Konferenzpaket
Jetzt anmelden
Until conference starts:
✓ 2-in-1 conference package
✓ Group discount
✓ Extra specials for freelancers
Register now
Bis Konferenzbeginn:
✓ 5-Tages-Special
✓ Kollegenrabatt
✓ Special Discount für Freelancer
Jetzt anmelden
Infos

Despite the advent of frameworks and other security techniques, SQL injection and XSS still remains some of the most common sources of vulnerabilities in web applications. Any variable that can be modified by an outside user can be a potential security risk. But cannot we simply track which variables have been provided by a monitor if they reach the database or client without any proper treatment? This is the idea behind so-called taint checking. In this talk, we will together discover how to use taint checking in PHP, how to properly configure tools, and evaluate the check results.

This Session originates from the archive of Diese Session stammt aus dem Archiv von BerlinBerlin . Take me to the program of . Hier geht es zum aktuellen Programm von Berlin Berlin .

This Session originates from the archive of Diese Session stammt aus dem Archiv von BerlinBerlin . Take me to the program of . Hier geht es zum aktuellen Programm von Munich München .

This Session Diese Session originates from the archive of stammt aus dem Archiv von BerlinBerlin . Take me to the current program of . Hier geht es zum aktuellen Programm von Berlin Berlin or oder Munich München .

Stay tuned!

Behind the Tracks of IPC

PHP Core & Coding
Best practices & applications

General Web Development
Broader web development topics

DevOps & Continuous Delivery
Learn about DevOps and transform your development pipeline

Software Architecture
All about PHP frameworks, concepts &
environments

Web Security
All about
web security

Software Quality
More about software testing tools &
strategies

Agile & Company Culture
Getting agile right is so important

Content Management Systems
Sessions on content management systems

#slideless (pure coding)
See how technology really works