1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 7:56 pm Apr 27, 2026

Forum Moderators: coopster

Message Too Old, No Replies

Want to have your server pwned? Easy: Run PHP

Research shows over 75% of all installs are insecure

         

Leosghost

12:42 pm on Jan 4, 2015 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member Top Contributors Of The Month



More than 78 per cent of all PHP installations are running with at least one known security vulnerability, a researcher has found.

Google developer advocate Anthony Ferrara reached this unpleasant conclusion by correlating statistics from web survey site W3Techs with lists of known vulnerabilities in various versions of PHP.

What he found is that many, many PHP-powered websites are using insecure versions of the interpreter – so much so that it's actually easier to find an insecure PHP setup on the internet than a secure one.


[theregister.co.uk...]

mack

1:59 pm on Jan 4, 2015 (gmt 0)

WebmasterWorld Administrator 10+ Year Member Top Contributors Of The Month



The other side to this is people who don't fully understand what they are doing and write insecure code.

It's a worrying thought of just how many hosts are not keeping on top of their versions and security. php is a very powerful and fairly easy to use language. It's statistics like this that could force people to look into alternatives.

Mack.
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

  1. Home
  2. Forums Index
  3. Server Side / PHP Server Side Scripting 7:56 pm Apr 27, 2026