Month of PHP Bugs – Day 10

Day 10 of the Month of PHP Bugs brings a new PHP vulnerability which occurs when using ext/filter and ASCII data. This raises the vulnerability count to 18.

  1. PHP ext/filter HTML Tag Stripping Bypass Vulnerability When ext/filter is configured to strip characters with low ASCII values it is possible to bypass the HTML tag filter in an easy way.




Thank you for reading this post. You can now Leave A Comment (0) or Leave A Trackback. Print This Post Print This Post


Subscribe without commenting


Leave a Reply

Note: Any comments are permitted only because the site owner is letting you post, and any comments will be removed for any reason at the absolute discretion of the site owner.

CommentLuv badge