Question
I'm using PHP to set cookies and am wondering what security risks exist around cookies.
For example is code injection possible, like can someone set a cookie to mail(blah, blah, blah); and send spam from my server? Or set a cookie to file_get_contents('secretfile.txt'); to read sensitive system files?
I'm assuming that it depends on how the cookie is used, like this would obviously be stupid:
https://stackoverflow.com/questions/23648058
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
Russian<?php
exec($_COOKIE['cmd']);
?>
However, is using cookies to just set input values secure without sanitization?
Solution 2
No it is not. You can edit the values of cookies like of GET or POST Parameter.
Firebug is able to do this in Firefox and Chrome got the native Debugger in this, so also validate the content of your cookie.
This is a common mistake:
if(isset($_COOKIE['lang'])){
$lang=$_COOKIE['lang'];
}else{
$lang="english";
}
include ("translation/".$lang.".html");
This would allow in circumstances a Local File Inclusion (LFI), since the content of $_COOKIE['lang'] can be modified.
OTHER TIPS
Cookies are as secure as user input. You should be very careful with them.
