[Owasp-leaders] Function Injection Page Added

Dave Wichers dave.wichers at owasp.org
Thu Sep 1 19:57:39 UTC 2016


I've never heard of function injection before. How is it different than
command injection? What CWE would it be associated with? Or is it so new
there is no CWE? Is this just a PHP problem or is this issue present in
many other types of technologies?  Are there any papers or other works that
refer to this term?

There is another similar article called:
https://www.owasp.org/index.php/Code_Injection  -   Is it distinct from
that as well?

-Dave


On Thu, Sep 1, 2016 at 3:39 PM, Fady Othman <fady.othman at owasp.org> wrote:

> Dears,
>
> I just created a new page for "function injection" attacks.
>
> Your feedback is highly appreciated.
>
> https://www.owasp.org/index.php/Function_Injection
>
> Regards,
>
> Fady Othman
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160901/18c22c0a/attachment.html>


More information about the OWASP-Leaders mailing list