Skip to Main Content
Secure Development for Mobile Apps
book

Secure Development for Mobile Apps

by J. D. Glaser
October 2014
Intermediate to advanced content levelIntermediate to advanced
472 pages
10h 44m
English
Auerbach Publications
Content preview from Secure Development for Mobile Apps
57
PHP seCurIty AntI-PAtterns
echo '<tr><th>Post</th><th>Date</th><th>Info</th></tr>';
ec ho '<td>',$value1,'</td>'.'<td>',$value2,'</
td>'.'<td>',$value3,'</td>';
}
Too Many Database Function Calls
e code below is a code pattern to avoid. Code like this is common in tutorials.
ebasic problem with this example is that there are too many holes to plug. ere are
too many SQL statements to protect. e output context, and data content are more
difficult to determine. Code changes become more laborious. ere are just too many
places that output data needs to be filtered and escaped, and so a developer loses control
of security measures.
echo '<h2>Blog List</h2>';
$result = mysql_query('SELECT * FROM Blogs");
if(mysql_num_rows($result)) {
ec ho '<table ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Developing with Web Standards

Developing with Web Standards

John Allsopp
Mobile Cloud Computing

Mobile Cloud Computing

Dijiang Huang, Huijun Wu

Publisher Resources

ISBN: 9781482209037