Full title: PHP filter_var Bypass Patch Vulnerability 
Category: local exploits
Platform: php
When the filter_var function is used in conjunction with the flags FILTER_VALIDATE_DOMAIN and FILTER_FLAG_HOSTNAME, there is a vulnerability in PHP that allows the filter to be bypassed. A patch has been included by the researcher as the PHP security team seems to have ignored this concern.

# 0day.today @ http://0day.today/