PROP - Patronage of PHP Web Applications
This addresses security issues for web developers using PHP, but appears incremental as it applies existing analysis methods to this domain.
The paper tackles the problem of source code vulnerabilities and workflow deviation attacks in PHP web applications by analyzing their complete behavior using static and dynamic analysis methodologies, but no concrete results or numbers are provided.
PHP is one of the most commonly used languages to develop web sites because of its simplicity, easy to learn and it can be easily embedded with any of the databases. A web developer with his basic knowledge developing an application without practising secure guidelines, improper validation of user inputs leads to various source code vulnerabilities. Logical flaws while designing, implementing and hosting the web application causes work flow deviation attacks. In this paper, we are analyzing the complete behaviour of a web application through static and dynamic analysis methodologies.