WebApp Sec mailing list archives
Re: Languages/platforms used for Web apps. Any stats?
From: Gary Warner <gar () askgar com>
Date: Sat, 25 Jun 2005 07:45:34 -0500
php is quite a bit MORE than overly represented, based on number of security issues, but its handled by securityfocus at a more basic level.
See my most recent rant about it here: http://birmingham-infragard.org/phpurgency.shtmlThere are actually several MILLION websites, which can be easily and quickly identified in Google, which are "instantly rootable" because of problems in the underlying PHP applications.
If you want to skip to the root of the issue instead of reading my rant, see:
http://www.securityfocus.com/bid/11964(which basically says EVERYTHING WRITTEN IN PHP IS DANGEROUS, ok that might be a slight overstatement)
and http://www.phpsecure.info/v2/zone/pVulnswhich is a database listing 454 PHP-based applications and their security issues.
Current thread:
- Languages/platforms used for Web apps. Any stats? Benjamin Livshits (Jun 24)
- RE: Languages/platforms used for Web apps. Any stats? Matt Szubrycht (Jun 24)
- Re: Languages/platforms used for Web apps. Any stats? Mark Susol Ultimate Creative Media (Jun 25)
- Re: Languages/platforms used for Web apps. Any stats? Steve McCullough (Jun 26)
- Re: Languages/platforms used for Web apps. Any stats? Jesse G. Lands (Jun 26)
- Re: Languages/platforms used for Web apps. Any stats? Mamading Ceesay (Jun 26)
- Re: Languages/platforms used for Web apps. Any stats? Mark Susol Ultimate Creative Media (Jun 25)
- RE: Languages/platforms used for Web apps. Any stats? Matt Szubrycht (Jun 24)
- Re: Languages/platforms used for Web apps. Any stats? Andrew van der Stock (Jun 24)
- Re: Languages/platforms used for Web apps. Any stats? focus (Jun 24)
- Re: Languages/platforms used for Web apps. Any stats? Steve McCullough (Jun 26)
- Re: Languages/platforms used for Web apps. Any stats? Rob Lanphier (Jun 25)
- Re: Languages/platforms used for Web apps. Any stats? Gary Warner (Jun 25)
- Re: Languages/platforms used for Web apps. Any stats? prep (Jun 25)
- RE: Languages/platforms used for Web apps. Any stats? Mark Curphey (Jun 25)
- RE: Languages/platforms used for Web apps. Any stats? Steve Slater (Jun 25)
- Re: Languages/platforms used for Web apps. Any stats? Adam Shostack (Jun 25)
- Re: Languages/platforms used for Web apps. Any stats? Ben Sytko (Jun 25)
- RE: Languages/platforms used for Web apps. Any stats? Mark Curphey (Jun 25)
- RE: Languages/platforms used for Web apps. Any stats? Mark Curphey (Jun 25)