The unexpected dangers of preg_replace()

Share links to interesting articles/tutorials/PDF's.
Forum rules
- Do not post links to stolen material. Doing so will result in a warning or ban.
- Do not double post already submitted links. They will be deleted.
- Posting links to your personal uploads (such as Dropbox) will first need to be approved by a moderator.
- Match post titles to the topic of the submission. (ex: 'C++ for Beginners')
- Requests for links are accepted.
If you wish to write your own article, submit it here: https://www.hackthissite.org/submit/article

The unexpected dangers of preg_replace()

Post by limdis on Sat Feb 20, 2016 2:30 pm
([msg=91663]see The unexpected dangers of preg_replace()[/msg])

mShred came across this researching a challenge in the CTF we are currently doing. Worth the read.

https://bitquark.co.uk/blog/2013/07/23/ ... eg_replace
"The quieter you become, the more you are able to hear..."
"Drink all the booze, hack all the things."
User avatar
limdis
Moderator
Moderator
 
Posts: 1657
Joined: Mon Jun 28, 2010 5:45 pm
Blog: View Blog (0)


Re: The unexpected dangers of preg_replace()

Post by chel_park on Fri Aug 17, 2018 3:41 am
([msg=96114]see Re: The unexpected dangers of preg_replace()[/msg])

I've bees using preg_replace to do some replacing work in my dynamic website. Post is very useful and i guess all the developers should read this out.
chel_park
New User
New User
 
Posts: 3
Joined: Fri Aug 17, 2018 3:36 am
Blog: View Blog (0)



Return to PDF's and Articles

Who is online

Users browsing this forum: No registered users and 0 guests