Looking for file upload scripts on my own server 2

[jimoblak]

I'm doing a security assessment for any unintentional doorways that might allow PHP to upload files to a server. To search for a file upload function, would I only need to grep for "$_FILES" or are there other things I should search for as well?

The goal is to search for all PHP scripts that perform file upload operations. Once found, we'll manually review each one for security issues.

 

[sleipnir214]

There is a variable $GLOBALS, which contains references to all variables in the global scope of the script, including $_POST, $_GET, $_FILES and itself.



Want the best answers? Ask the best questions! TANSTAAFL!

 

[sleipnir214]

If you're running PHP as a CGI scripting engine (rather than as a web server module), it may be possible to have file uploads passed to a script via STDIN, too.



Want the best answers? Ask the best questions! TANSTAAFL!

 

[jpadie]

and $HTTP_POST_FILES