lang:

PHP

regex:

mt_rand\s?\(|srand\s?\(

description:

The application uses pseudo-random number generation that is not cryptographically secure. Carry out a manual check to ensure this is not being used in a process that requires cryptographically secure random numbers.
tags:
insecure weak random
results