Archive for Tag Archives: 'unserialize'
Hey PHP, those variables look like garbage don’t you agree? No? Well look again… tl;dr: We have [...]
It all started by auditing Pornhub, then PHP and ended in breaking both… tl;dr: We have gained [...]
While auditing Pornhub we have stumbled across several pages where user input was evaluated by unserialize and the [...]