[1] M. Achour et al. PHP Manual
[2] PHP Security Consortium PhpSecInfo Test Information
[3] Alla Bezroutchko Secure file upload in PHP web applications
[4] Standards Mapping - CIS Azure Kubernetes Service Benchmark
5[5] Standards Mapping - CIS Microsoft Azure Foundations Benchmark
partial[6] Standards Mapping - CIS Amazon Elastic Kubernetes Service Benchmark
3[7] Standards Mapping - CIS Amazon Web Services Foundations Benchmark
5[8] Standards Mapping - CIS Google Kubernetes Engine Benchmark
integrity[9] Standards Mapping - Common Weakness Enumeration
CWE ID 434[10] Standards Mapping - Common Weakness Enumeration Top 25 2019
[16] CWE ID 434[11] Standards Mapping - Common Weakness Enumeration Top 25 2020
[15] CWE ID 434[12] Standards Mapping - Common Weakness Enumeration Top 25 2021
[10] CWE ID 434[13] Standards Mapping - Common Weakness Enumeration Top 25 2022
[10] CWE ID 434[14] Standards Mapping - Common Weakness Enumeration Top 25 2023
[10] CWE ID 434[15] Standards Mapping - DISA Control Correlation Identifier Version 2
CCI-001167[16] Standards Mapping - FIPS200
SI[17] Standards Mapping - General Data Protection Regulation (GDPR)
Indirect Access to Sensitive Data[18] Standards Mapping - NIST Special Publication 800-53 Revision 4
SC-18 Mobile Code (P2)[19] Standards Mapping - NIST Special Publication 800-53 Revision 5
SC-18 Mobile Code[20] Standards Mapping - OWASP Top 10 2004
A6 Injection Flaws[21] Standards Mapping - OWASP Top 10 2007
A3 Malicious File Execution[22] Standards Mapping - OWASP Top 10 2010
A1 Injection[23] Standards Mapping - OWASP Top 10 2013
A1 Injection[24] Standards Mapping - OWASP Top 10 2017
A1 Injection[25] Standards Mapping - OWASP Top 10 2021
A04 Insecure Design[26] Standards Mapping - OWASP Application Security Verification Standard 4.0
12.2.1 File Integrity Requirements (L2 L3), 12.5.2 File Download Requirements (L1 L2 L3), 13.1.5 Generic Web Service Security Verification Requirements (L2 L3)[27] Standards Mapping - OWASP Mobile 2014
M7 Client Side Injection[28] Standards Mapping - Payment Card Industry Data Security Standard Version 1.1
Requirement 6.5.6[29] Standards Mapping - Payment Card Industry Data Security Standard Version 1.2
Requirement 6.3.1.1, Requirement 6.5.3[30] Standards Mapping - Payment Card Industry Data Security Standard Version 2.0
Requirement 6.5.1[31] Standards Mapping - Payment Card Industry Data Security Standard Version 3.0
Requirement 6.5.1[32] Standards Mapping - Payment Card Industry Data Security Standard Version 3.2
Requirement 6.5.1[33] Standards Mapping - Payment Card Industry Data Security Standard Version 3.2.1
Requirement 6.5.1[34] Standards Mapping - Payment Card Industry Data Security Standard Version 3.1
Requirement 6.5.1[35] Standards Mapping - Payment Card Industry Data Security Standard Version 4.0
Requirement 6.2.4[36] Standards Mapping - Payment Card Industry Software Security Framework 1.0
Control Objective 4.2 - Critical Asset Protection[37] Standards Mapping - Payment Card Industry Software Security Framework 1.1
Control Objective 4.2 - Critical Asset Protection[38] Standards Mapping - Payment Card Industry Software Security Framework 1.2
Control Objective 4.2 - Critical Asset Protection, Control Objective C.3.4 - Web Software Attack Mitigation[39] Standards Mapping - SANS Top 25 2010
Insecure Interaction - CWE ID 434[40] Standards Mapping - SANS Top 25 2011
Insecure Interaction - CWE ID 434[41] Standards Mapping - Security Technical Implementation Guide Version 3.1
APP3510 CAT I[42] Standards Mapping - Security Technical Implementation Guide Version 3.4
APP3510 CAT I[43] Standards Mapping - Security Technical Implementation Guide Version 3.5
APP3510 CAT I[44] Standards Mapping - Security Technical Implementation Guide Version 3.6
APP3510 CAT I[45] Standards Mapping - Security Technical Implementation Guide Version 3.7
APP3510 CAT I[46] Standards Mapping - Security Technical Implementation Guide Version 3.9
APP3510 CAT I[47] Standards Mapping - Security Technical Implementation Guide Version 3.10
APP3510 CAT I[48] Standards Mapping - Security Technical Implementation Guide Version 4.1
APSC-DV-003300 CAT II[49] Standards Mapping - Security Technical Implementation Guide Version 4.2
APSC-DV-003300 CAT II[50] Standards Mapping - Security Technical Implementation Guide Version 4.3
APSC-DV-003300 CAT II[51] Standards Mapping - Security Technical Implementation Guide Version 4.4
APSC-DV-003300 CAT II[52] Standards Mapping - Security Technical Implementation Guide Version 4.5
APSC-DV-003300 CAT II[53] Standards Mapping - Security Technical Implementation Guide Version 4.6
APSC-DV-003300 CAT II[54] Standards Mapping - Security Technical Implementation Guide Version 4.7
APSC-DV-003300 CAT II[55] Standards Mapping - Security Technical Implementation Guide Version 4.8
APSC-DV-003300 CAT II[56] Standards Mapping - Security Technical Implementation Guide Version 4.9
APSC-DV-003300 CAT II[57] Standards Mapping - Security Technical Implementation Guide Version 4.10
APSC-DV-003300 CAT II[58] Standards Mapping - Security Technical Implementation Guide Version 4.11
APSC-DV-003300 CAT II[59] Standards Mapping - Security Technical Implementation Guide Version 5.1
APSC-DV-003300 CAT II[60] Standards Mapping - Security Technical Implementation Guide Version 5.2
APSC-DV-003300 CAT II[61] Standards Mapping - Security Technical Implementation Guide Version 5.3
APSC-DV-003300 CAT II[62] Standards Mapping - Web Application Security Consortium Version 2.00
Improper Input Handling (WASC-20)