Essential PHP Security

Index

[SYMBOL] [A] [B] [C] [D] [E] [F] [G] [H] [I] [L] [M] [N] [O] [P] [Q] [R] [S] [T] [U] [V] [W]

file() function

file_get_contents() function 2nd

file_uploads directive

filenames

     manipulation of

     tainted

files

     remote, referencing as local files 2nd

     restricting opens to specific directory

     traversal, preventing 2nd

     upload attacks

     uploading, enabling

filesize() function

filesystem browsing

filtered data

     identifying

     naming convention for

filtering data

     as input 2nd 3rd

     for dynamic includes 2nd

fopen() function 2nd

forms

     forcing use of, to avoid CSRF attack

     spoofing

     tokens in, preventing CSRF attacks

     trustworthiness of data sent in

     uploading data using

functions, disabling