安全研究
p4ndat
这个作者很懒,什么都没留下…
展开
-
由PHP SECURITY CALENDAR 2017引发的思考总结
0x01 起因 Day 1 - Wish List Can you spot the vulnerability? class Challenge { const UPLOAD_DIRECTORY = './solutions/'; private $file; private $whitelist; public function __construct($file) { ...原创 2019-06-27 12:47:28 · 245 阅读 · 0 评论 -
由filter_var()函数引起的技术探讨
0x01 起因 最近在看PHP SECURITY CALENDAR 2017的题目,这是第二题 Day 2 - Twig Can you spot the vulnerability? // composer require "twig/twig" require 'vendor/autoload.php'; class Template { private $twig; public...原创 2019-06-27 12:48:54 · 580 阅读 · 0 评论