How can I check whether a script available on the internet is insecure?

Using scripts in your account that are insecure (vulnerabilities unpatched) is very dangerous. Doing so runs the risk of account suspension or exploit from a third party which can cause total account compromise, data loss or account suspension/termination (if used by the person for warez, spam, etc).

Therefore, it is extremely important that all scripts in use are the latest version and secure.

A good way of determining whether a script is secure is to type the script name into http://www.google.com along with the word "exploit" which will bring up any security topics associated with the script that can be researched. For example, a search on PHP-Nuke can be seen here.

  • 2 Users Found This Useful
Was this answer helpful?

Related Articles

Is NetPBM installed?

NetPBM is not installed in a central location on the server because ImageMagick can usually be...

Can I run PHP scripts anywhere on my web space?

You can run PHP scripts anywhere on your web space with the exception of the "cgi-bin".

Why is allow_url_fopen disabled?

The PHP parameter allow_url_fopen has been disabled in PHP across our web hosting services as a...

What is the path to Perl?

The path to Perl on our servers is: /usr/bin/perl

What is PHP?

PHP is an open source scripting language used to create dynamic Web pages. PHP script is enclosed...