Blog Post

Blogs » PHP » Oh dear

Oh dear

Save to
Del.icio.us

Google Code Search for Security Vulnerabilities

Here’s my attempt - hunting for $_GET / $_POST / $_COOKIE placed at the start of on and include / require / include_once / require_once - potentially a path to include remote files. (Un)?fortunately seems to break the search interface right now - although more results are reported, you can’t seem to get beyond page 2 right now.

lang:php (include|require)(_once)?\s*['"(]?\s*\$_(GET|POST|COOKIE)

So what’s the opposite of “security by obscurity” - because this seems to be it - Koders at least kept their search syntax weak.

Tags: google code search, php, security

This entry was posted on Friday, October 6th, 2006 at 9:08 am, contains 87 words, and is filed under PHP. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed. The views and opinions in this blog post are those of its author.

This post has 4 responses so far

CAGRET Says:
October 6th, 2006 at 11:53 pm

Seems something is broken in their code search right now, your example doesn’t return any results. Another test: lang:php include is OK. But trying lang:php include\s* again no results..
Lionheart008 Says:
October 7th, 2006 at 11:40 pm

VBulletin Licence Number lang:php

Plug that into google code search, you can actually search for VB licence numbers, google better fix this quick.
Etnu Says:
October 8th, 2006 at 1:28 pm

“Fix”? Why? Because stupid people expose code on the Internet?

Google is doing software engineering a great service, not just through search, but by exposing these glaring security holes. If google’s spider can find it, SO CAN SOMEBODY TRYING TO DO SOMETHING MALICIOUS!

Here are some tips:

1. Don’t leave sensitive information in publicly accessible directories. If you don’t understand why this is important, you deserve to get hacked.

2. Spend a few hours actually learning about security best-practices.

3. Quit relying on security by obscurity. It’s worthless. Use real security measures and you won’t have these kinds of problems.

People need to stop writing horrible code. If it takes google making it easy to expose these flaws, then, well, so be it. More work for developers who actually know what they’re doing.
olaf2 Says:
October 12th, 2006 at 9:56 pm

I don’t think that this code search is very usefull, not for the user and not for the owner. I don’t wanna think about how many people will hijack this data and place the code as without permissions in some kind of code directory.

I’m wondering why I someone should use this search…

At last google is indexing the files inside zip files, read some days ago about searches for WP config files ripped from .zip backup archives…

Leave a response

Your Blogmaster is...

Harry Fuecks

Harry has been working in corporate IT since 1994, with everything from start-ups to Fortune 100 companies. Outside of office hours he runs phpPatterns: a site dedicated to software design with PHP that aims to raise standards of PHP development. He also maintains Dynamically Typed: SitePoint's PHP blog.

SitePoint Marketplace

Buy and sell Websites, templates, domain names, hosting, graphics and more.

Tell me more...

Logo Design, Web page Design and more!

Custom logo designs created ‘just for you’.
Pick the design you like best.
Only pay if you’re satisfied with the result.

Visit 99designs.com

Want More Traffic?

Get up to five quotes from qualified SEO specialists, with no obligation!

Get A Free SEO Quote Now!

Download sample chapters of any of our popular books.

Learn more with SitePoint books

Posting Code Snippets

Feel free to enter code snippets into your comments in the following format.

Marking Up Your Code

<pre>
<code class='html'> 
code snippet 
</code>
</pre>

Be sure to escape any HTML snippets (i.e. '<' becomes '<' ).

Supported language classes include:

XML, HTML, XSLT and any other XML style code
CSS
C#
VB & VB.NET
Delphi, Pascal
JavaScript
PHP
Python
SQL

SitePoint.com