bl4de opened this issue 8 years ago · 0 comments
Add detection of unserialize() usage
Some refs: https://rhinosecuritylabs.com/research/remote-code-execution-bug-hunting-chapter-1/ https://www.notsosecure.com/remote-code-execution-via-php-unserialize/ http://stackoverflow.com/questions/3115559/exploitable-php-functions