OPSEC Cybersecurity News Live
PHP code review: is it open to object code injection through unserialize

https://security.stackexchange.com/questions/269314/php-code-review-is-it-open-to-object-code-injection-through-unserialize

#objectinjection #deserialization #codereview #cookies #php
PHP code review: is it open to object code injection through unserialize

I'm trying to figure out if the code below is open to object injection: <?php // loggin level define('CRIT', 5); define('ERROR', 4); // secret is defined somewhere in the script ...

Information Security Stack Exchange
Mar 24, 2023 at 10:58pmWeb