• 0

Form Security Testing


Question

Basically, I want to know some ideas to test what I can do with the form fields on a website I am working on. It currently has blog, login, posting/discussion board, contact and CMS. What I want is some ideas for what to put into these fields to make screwey stuff happen. I have already tried inputing an entire page's code into a field and I was actually able to construct links and pull new pages through PHP code.

So give me anything I can use to try and break this page short of dropping the database. It will definitely help secure the site and make it moron proof.

Link to comment
Share on other sites

4 answers to this question

Recommended Posts

  • 0

- javascript (just a simple hello world would be fine)

- SQL - perhaps a create table statement

- Invalid data (integers when you expect a string and vice versa)

- Do you handle 1.000,00 and 1,000.00 correctly

Link to comment
Share on other sites

  • 0

- javascript (just a simple hello world would be fine)

- SQL - perhaps a create table statement

- Invalid data (integers when you expect a string and vice versa)

- Do you handle 1.000,00 and 1,000.00 correctly

BTW, if anyone has a fix for special characters that would be great too.

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.