Why is PHP poor security?

Why do the development of banking systems and other financial types use Java instead of PHP? Why is php unsafe? In what aspects is java safe?

1.PHP is a weak data type language, Java is a mandatory type language, and the data type requirements are more stringent. This feature makes Java Runs more robustly.

2.PHP's require()includes files, especially when dynamically including files, there will be security risks.

3. Java has more various system solutions than PHP, but the Java development cycle is relatively long, and small companies will not first choose Java. (php video tutorial)

4. The bank financial system uses Java. It may be because there are many ready-made solutions in Java. The large financial systems that Java can do can also be done in PHP. And generally speaking, the cost and cycle of PHP are shorter than that of Java for the same functions.

As for security, it depends on the programmer. For example, SQL injection, PHP can also assemble strings, which can also cause SQL injection. If used PDOOperation database, then preprocessing binding parameters can completely solve the SQL injection problem.

The above is the detailed content of Why is PHP poor security?. For more information, please follow other related articles on the PHP Chinese website!