These vulnerabilities might seem simple, but I saw them many times when I performed source code review. I hope this sheds some light on simple but dangerous vulnerabilities, they can be prevented by programmers that are focused on secure programming. Granted, it takes some time to understand it for some, but it is worth it. Because, somewhere down the road it will be exploited by someone with more time than you have to program the code. If you consider to write code that is released for free and to a great audience, please remember that you have to make sure that it is secure for those who use it. There is simply no excuse to make such mistakes, especially when your code previously had SQL injection vulnerabilities and proposed the above code as your fix. Everyone makes mistakes, over time I had my fair share also. But that doesn't mean that one shouldn't stay wary of these things.

信息来源：http://forum.darkst.com/read.php?tid=5761
文章作者：zizzy

关 于php包含Apache日志的利用,其实也就是利用提交的网址里有php语句，然后再被Apache服务器的日志记录，然后php再去包含执行，从而包 含了去执行。当然，这种办法最大的弊端是Apache日志肯定会过大，回应的时候当然会超时什么的，所以也是受条件限制的。全当一种研究算了。下面是我的 测试过程，我觉得很有意思，你也看看。

Mysql BackDoor是一款针对PHP+Mysql服务器开发的后门,后门安装后为Mysql增加一个可以执行系统命令的"state"函数,并且随 Mysql进程启动一个基于Dll的嗅探型后门,从而巧妙地实现了无端口,无进程,无服务的穿墙木马.程序在WINXP、 WIN2003+MYSQL5.0.X下通过.

This toolset demonstrates the use of PHP on Windows environments to perform interesting and creative vectors of attack.

Oracle 自动攻击器 demo
* 2008.3.25,linx2008@gmail.com
* 利用条件： 
* 1.oracle服务器可以读取当前php脚本
* 2.要运行系统命令，请先在oralce服务器创建 sys.LinxRunCMD() 函数

MySQL Database is a great product used by thousand of websites. Various web applications use MySQL as their default database. Some of these applications are written with security in mind, and some are not. In this article, I would like to show you how you can exploit SQL injection in order to gain almost full control over your webserver.

In this tutorail i will describe how sql injection works and how to
use it to get some useful information.

While the adoption of web applications for conducting online business has enabled companies to connect seamlessly with their customers, it has also exposed a number of security concerns stemming from improper coding. Vulnerabilities in web applications allow hackers to gain direct and public access to sensitive information (e.g. personal data, login credentials).