Being an open-source language, the ASCII text file is open for anyone to see. Hence, general people can see the logic and even bugs in your code, making it easier for them to manipulate it. Hence, your website becomes vulnerable to XSS and SQL injection attacks. Also, there is no default security mechanism in PHP, leading to security concerns.
Leave a Reply