PHP injection found in logs

firetail:insight-php-injection-in-logs

Type:

Detection

Rule Severity:

Info

Indicators for attempted PHP injection were found in the logs of the affected API.

PHP Injection is a type of vulnerability where an attacker can insert malicious PHP code into an application. This can occur when user inputs are improperly handled or sanitized, allowing the attacker to execute arbitrary PHP code on the server. PHP Injection can lead to unauthorized access, data leakage, or system compromise.

Remediation

Review the logs in question and verify that any attempted attack was unsuccessful.

Example Attack Scenario

How to Identify with Example Scenario

How to Resolve with Example Scenario

How to Identify with Example Scenario

Find the text in bold to identify issues such as these in API specifications

How to Resolve with Example Scenario

Modify the text in bold to resolve issues such as these in API specifications
References:

More findings

All Findings
Missing global security
Missing array limit
Average combined payload size reduced
Average execution time elevated
Undefined string limit
Average request payload size reduced