Security expert Andreas Bogk warns that, despite recent PHP
improvements, the session IDs of users who are logged into PHP
applications remain guessable. Upon close examination, the alleged
improvements display frightening weaknesses. Read the full article. [The H Security]
PHP Session IDs Can Be Guessed
Author:
Donald Sears
minute read
Share this article:
Security expert Andreas Bogk warns that, despite recent PHP
improvements, the session IDs of users who are logged into PHP
applications remain guessable. Upon close examination, the alleged
improvements display frightening weaknesses. Read the full article. [The H Security]