È·±£PHP°²È«µÄËÄÌõ°²È«¹æÔò

ÓйØPHP
°²È«µÄ¼¸Ìõ¹æÔò
¹æÔò 1£º¾ø²»ÒªÐÅÈÎÍⲿÊý¾Ý»òÊäÈë
¹ØÓÚ Web Ó¦ÓóÌÐò°²È«ÐÔ£¬±ØÐëÈÏʶµ½µÄµÚÒ»¼þÊÂÊDz»Ó¦¸ÃÐÅÈÎÍⲿÊý¾Ý¡£ÍⲿÊý¾Ý£¨outside data£© °üÀ¨²»ÊÇÓɳÌÐòÔ±ÔÚ PHP

´úÂëÖÐÖ±½ÓÊäÈëµÄÈκÎÊý¾Ý¡£ÔÚ²ÉÈ¡´ëÊ©È·±£°²È«Ö®Ç°£¬À´×ÔÈκÎÆäËûÀ´Ô´£¨±ÈÈç GET ±äÁ¿¡¢±íµ¥ POST¡¢Êý¾Ý¿â¡¢ÅäÖÃÎļþ¡¢»á»°±äÁ¿»ò
cookie£©µÄÈκÎÊý¾Ý¶¼ÊDz»¿ÉÐÅÈεÄ
ÀýÈ磬ÏÂÃæµÄÊý¾ÝÔªËØ¿ÉÒÔ±»ÈÏΪÊÇ°²È«µÄ£¬ÒòΪËüÃÇÊÇÔÚ PHP
ÖÐÉèÖõġ£
Çåµ¥ 1. °²È«ÎÞϾµÄ´úÂë
ÒÔÏÂΪÒýÓõÄÄÚÈÝ£º
<?php
$myUsername = ‘tmyer’;
$arrayUsers =
array(’tmyer’, ‘tom’, ‘tommy’);
define(”GREETING”, ‘hello there’ .
$myUsername);
?>
µ«ÊÇ£¬ÏÂÃæµÄÊý¾ÝÔªËض¼ÊÇÓÐ覴õġ£
Çåµ¥ 2. ²»°²È«¡¢ÓÐ覴õĴúÂë
ÒÔÏÂΪÒýÓõÄÄÚÈÝ£º
<?php
$myUsername = $_POST['username'];
//tainted!
$arrayUsers = array($myUsername, ‘tom’, ‘tommy’);
//tainted!
define(”GREETING”, ‘hello there’ . $myUsername);
//tainted!
?>
Ϊ ʲôµÚÒ»¸ö±äÁ¿ $myUsername ÊÇÓÐ覴õģ¿ÒòΪËüÖ±½ÓÀ´×Ô±íµ¥
POST¡£Óû§¿ÉÒÔÔÚÕâ¸öÊäÈëÓòÖÐÊäÈëÈκÎ×Ö·û´®£¬°üÀ¨ÓÃÀ´Çå³ýÎļþ»òÔËÐÐÒÔÇ°ÉÏ´«µÄÎļþµÄ¶ñÒâÃüÁî¡£Äú¿ÉÄÜ»áÎÊ£¬“ÄѵÀ²»ÄÜʹÓÃÖ»½ÓÊÜ×Öĸ A-Z
µÄ¿Í»§¶Ë£¨Javascrīpt£©±íµ¥¼ìÑé½Å±¾À´±ÜÃâÕâÖÖΣÏÕÂ𣿔Êǵģ¬Õâ×ÜÊÇÒ»¸öÓкô¦µÄ²½Ö裬µ«ÊÇÕýÈçÔÚºóÃæ»á¿´µ½µÄ£¬ÈκÎÈ˶¼¿ÉÒÔ½«ÈÎºÎ±íµ¥ÏÂÔØ
µ½×Ô¼ºµÄ»úÆ÷ÉÏ£¬ÐÞ¸ÄËü£¬È»ºóÖØÐÂÌá½»ËûÃÇÐèÒªµÄÈκÎÄÚÈÝ¡£
½â¾ö·½°¸ºÜ¼òµ¥£º±ØÐë¶Ô $_POST['username'] ÔËÐÐÇåÀí´úÂë¡£Èç¹û²»Õâô×ö£¬ÄÇôÔÚʹÓà $myUsername
µÄÈκÎÆäËûʱºò£¨±ÈÈçÔÚÊý×é»ò³£Á¿ÖУ©£¬¾Í¿ÉÄÜÎÛȾÕâЩ¶ÔÏó¡£
¶ÔÓû§ÊäÈë½øÐÐÇåÀíµÄÒ»¸ö¼òµ¥·½·¨ÊÇ£¬Ê¹ÓÃÕýÔò±í´ïʽÀ´´¦ÀíËü¡£ÔÚÕâ¸öʾÀýÖУ¬Ö»Ï£Íû½ÓÊÜ×Öĸ¡£½«×Ö·û´®ÏÞÖÆΪÌض¨ÊýÁ¿µÄ×Ö·û£¬»òÕßÒªÇóËùÓÐ×Öĸ¶¼ÊÇСдµÄ£¬Õâ¿ÉÄÜÒ²ÊǸöºÃÖ÷Òâ¡£
Çåµ¥ 3. ʹÓû§ÊäÈë±äµÃ°²È« www~phperz~com
ÒÔÏÂΪÒýÓõÄÄÚÈÝ£º
<?php
$myUsername = cleanInput($_POST['username']);
//clean!
$arrayUsers = array($myUsername, ‘tom’, ‘tommy’);
//clean!
define(”GREETING”, ‘hello there’ .