Home > Backend Development > PHP Tutorial > Solving the overflow problem of PHP original HTML encoder_PHP tutorial

Solving the overflow problem of PHP original HTML encoder_PHP tutorial

WBOY
Release: 2016-07-15 13:22:38
Original
1291 people have browsed it

In PHP5.1.6, 4.4.4 and previous versions, when searching for "htmlspecialchars() and htmlentities()" related character encodings, a possible buffer may be triggered when UTF-8 encoding is selected overflow.

 While we were searching for a hole in htmlspecialchars() and htmlentities() to bypass the encoding of certain chars to exploit a possible eval() injection hole in another application we discovered that the implementation contains a possible bufferoverflow that can be triggered when the UTF-8 charset is selected.”

The latest release of PHP5 version 5.2 has fixed this error, but the problem still exists in PHP4.4 version. Full information can be viewed at the full vulnerability.


www.bkjia.comtruehttp: //www.bkjia.com/PHPjc/446956.htmlTechArticleIn PHP5.1.6, 4.4.4 and previous versions, looking for information about "htmlspecialchars() and htmlentities()" When encoding related characters, when UTF-8 encoding is selected, a message may be triggered...
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template