René's URL Explorer Experiment


Title: GitHub - ssstl/php_bugs: PHP代码审计分段讲解

Open Graph Title: GitHub - ssstl/php_bugs: PHP代码审计分段讲解

X Title: GitHub - ssstl/php_bugs: PHP代码审计分段讲解

Description: PHP代码审计分段讲解. Contribute to ssstl/php_bugs development by creating an account on GitHub.

Open Graph Description: PHP代码审计分段讲解. Contribute to ssstl/php_bugs development by creating an account on GitHub.

X Description: PHP代码审计分段讲解. Contribute to ssstl/php_bugs development by creating an account on GitHub.

Opengraph URL: https://github.com/ssstl/php_bugs

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/:user_id/:repository
route-controllerfiles
route-actiondisambiguate
fetch-noncev2:c8b6b5b1-98c9-3af2-e2c6-be4458711810
current-catalog-service-hashf3abb0cc802f3d7b95fc8762b94bdcb13bf39634c40c357301c4aa1d67a256fb
request-id9BEC:2C5CB8:5F6EC:85A1D:697CC19C
html-safe-nonceadb5bfb2ec0c5c415dbb2fd7e6c0785c6f20cf64172c00394c84d6c8287880d5
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI5QkVDOjJDNUNCODo1RjZFQzo4NUExRDo2OTdDQzE5QyIsInZpc2l0b3JfaWQiOiI2ODQ1MjQ5ODczOTM4MTkwMzYiLCJyZWdpb25fZWRnZSI6ImlhZCIsInJlZ2lvbl9yZW5kZXIiOiJpYWQifQ==
visitor-hmac490b1437309f61538c570710eca20b611f2d76e95d7208a420aff73d6768cb45
hovercard-subject-tagrepository:171646497
github-keyboard-shortcutsrepository,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location//
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/ssstl/php_bugs
twitter:imagehttps://opengraph.githubassets.com/33cff84bc758ed552e089905e981fcfa7c7d21a362d7f175ed9a1e5a841c1c8f/ssstl/php_bugs
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/33cff84bc758ed552e089905e981fcfa7c7d21a362d7f175ed9a1e5a841c1c8f/ssstl/php_bugs
og:image:altPHP代码审计分段讲解. Contribute to ssstl/php_bugs development by creating an account on GitHub.
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
hostnamegithub.com
expected-hostnamegithub.com
Noned4c783778d5800630f3410c71c48893af4e0b2c5fc0c3d1b496c01fbaf3dc168
turbo-cache-controlno-preview
go-importgithub.com/ssstl/php_bugs git https://github.com/ssstl/php_bugs.git
octolytics-dimension-user_id26295946
octolytics-dimension-user_loginssstl
octolytics-dimension-repository_id171646497
octolytics-dimension-repository_nwossstl/php_bugs
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id102736886
octolytics-dimension-repository_parent_nwobowu678/php_bugs
octolytics-dimension-repository_network_root_id102736886
octolytics-dimension-repository_network_root_nwobowu678/php_bugs
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release5692c2ac29cb639a6b80b3e5e21feed6755366b6
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/ssstl/php_bugs#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fssstl%2Fphp_bugs
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fssstl%2Fphp_bugs
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E&source=header-repo&source_repo=ssstl%2Fphp_bugs
Reloadhttps://patch-diff.githubusercontent.com/ssstl/php_bugs
Reloadhttps://patch-diff.githubusercontent.com/ssstl/php_bugs
Reloadhttps://patch-diff.githubusercontent.com/ssstl/php_bugs
ssstl https://patch-diff.githubusercontent.com/ssstl
php_bugshttps://patch-diff.githubusercontent.com/ssstl/php_bugs
bowu678/php_bugshttps://patch-diff.githubusercontent.com/bowu678/php_bugs
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fssstl%2Fphp_bugs
Fork 0 https://patch-diff.githubusercontent.com/login?return_to=%2Fssstl%2Fphp_bugs
Star 0 https://patch-diff.githubusercontent.com/login?return_to=%2Fssstl%2Fphp_bugs
0 stars https://patch-diff.githubusercontent.com/ssstl/php_bugs/stargazers
367 forks https://patch-diff.githubusercontent.com/ssstl/php_bugs/forks
Branches https://patch-diff.githubusercontent.com/ssstl/php_bugs/branches
Tags https://patch-diff.githubusercontent.com/ssstl/php_bugs/tags
Activity https://patch-diff.githubusercontent.com/ssstl/php_bugs/activity
Star https://patch-diff.githubusercontent.com/login?return_to=%2Fssstl%2Fphp_bugs
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fssstl%2Fphp_bugs
Code https://patch-diff.githubusercontent.com/ssstl/php_bugs
Pull requests 0 https://patch-diff.githubusercontent.com/ssstl/php_bugs/pulls
Actions https://patch-diff.githubusercontent.com/ssstl/php_bugs/actions
Projects 0 https://patch-diff.githubusercontent.com/ssstl/php_bugs/projects
Security 0 https://patch-diff.githubusercontent.com/ssstl/php_bugs/security
Insights https://patch-diff.githubusercontent.com/ssstl/php_bugs/pulse
Code https://patch-diff.githubusercontent.com/ssstl/php_bugs
Pull requests https://patch-diff.githubusercontent.com/ssstl/php_bugs/pulls
Actions https://patch-diff.githubusercontent.com/ssstl/php_bugs/actions
Projects https://patch-diff.githubusercontent.com/ssstl/php_bugs/projects
Security https://patch-diff.githubusercontent.com/ssstl/php_bugs/security
Insights https://patch-diff.githubusercontent.com/ssstl/php_bugs/pulse
Brancheshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/branches
Tagshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/tags
https://patch-diff.githubusercontent.com/ssstl/php_bugs/branches
https://patch-diff.githubusercontent.com/ssstl/php_bugs/tags
35 Commitshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/commits/master/
https://patch-diff.githubusercontent.com/ssstl/php_bugs/commits/master/
imghttps://patch-diff.githubusercontent.com/ssstl/php_bugs/tree/master/img
imghttps://patch-diff.githubusercontent.com/ssstl/php_bugs/tree/master/img
01 extract变量覆盖.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/01%20extract%E5%8F%98%E9%87%8F%E8%A6%86%E7%9B%96.php
01 extract变量覆盖.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/01%20extract%E5%8F%98%E9%87%8F%E8%A6%86%E7%9B%96.php
02 绕过过滤的空白字符.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/02%20%E7%BB%95%E8%BF%87%E8%BF%87%E6%BB%A4%E7%9A%84%E7%A9%BA%E7%99%BD%E5%AD%97%E7%AC%A6.php
02 绕过过滤的空白字符.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/02%20%E7%BB%95%E8%BF%87%E8%BF%87%E6%BB%A4%E7%9A%84%E7%A9%BA%E7%99%BD%E5%AD%97%E7%AC%A6.php
03 多重加密.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/03%20%E5%A4%9A%E9%87%8D%E5%8A%A0%E5%AF%86.php
03 多重加密.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/03%20%E5%A4%9A%E9%87%8D%E5%8A%A0%E5%AF%86.php
04 SQL注入_WITH ROLLUP绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/04%20SQL%E6%B3%A8%E5%85%A5_WITH%20ROLLUP%E7%BB%95%E8%BF%87.php
04 SQL注入_WITH ROLLUP绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/04%20SQL%E6%B3%A8%E5%85%A5_WITH%20ROLLUP%E7%BB%95%E8%BF%87.php
05 ereg正则%00截断.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/05%20ereg%E6%AD%A3%E5%88%99%2500%E6%88%AA%E6%96%AD.php
05 ereg正则%00截断.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/05%20ereg%E6%AD%A3%E5%88%99%2500%E6%88%AA%E6%96%AD.php
06 strcmp比较字符串.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/06%20strcmp%E6%AF%94%E8%BE%83%E5%AD%97%E7%AC%A6%E4%B8%B2.php
06 strcmp比较字符串.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/06%20strcmp%E6%AF%94%E8%BE%83%E5%AD%97%E7%AC%A6%E4%B8%B2.php
07 sha()函数比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/07%20sha()%E5%87%BD%E6%95%B0%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
07 sha()函数比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/07%20sha()%E5%87%BD%E6%95%B0%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
08 SESSION验证绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/08%20SESSION%E9%AA%8C%E8%AF%81%E7%BB%95%E8%BF%87.php
08 SESSION验证绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/08%20SESSION%E9%AA%8C%E8%AF%81%E7%BB%95%E8%BF%87.php
09 密码md5比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/09%20%E5%AF%86%E7%A0%81md5%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
09 密码md5比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/09%20%E5%AF%86%E7%A0%81md5%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
10 urldecode二次编码绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/10%20urldecode%E4%BA%8C%E6%AC%A1%E7%BC%96%E7%A0%81%E7%BB%95%E8%BF%87.php
10 urldecode二次编码绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/10%20urldecode%E4%BA%8C%E6%AC%A1%E7%BC%96%E7%A0%81%E7%BB%95%E8%BF%87.php
11 sql闭合绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/11%20sql%E9%97%AD%E5%90%88%E7%BB%95%E8%BF%87.php
11 sql闭合绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/11%20sql%E9%97%AD%E5%90%88%E7%BB%95%E8%BF%87.php
12 X-Forwarded-For绕过指定IP地址.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/12%20X-Forwarded-For%E7%BB%95%E8%BF%87%E6%8C%87%E5%AE%9AIP%E5%9C%B0%E5%9D%80.php
12 X-Forwarded-For绕过指定IP地址.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/12%20X-Forwarded-For%E7%BB%95%E8%BF%87%E6%8C%87%E5%AE%9AIP%E5%9C%B0%E5%9D%80.php
13 md5加密相等绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/13%20md5%E5%8A%A0%E5%AF%86%E7%9B%B8%E7%AD%89%E7%BB%95%E8%BF%87.php
13 md5加密相等绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/13%20md5%E5%8A%A0%E5%AF%86%E7%9B%B8%E7%AD%89%E7%BB%95%E8%BF%87.php
14 intval函数四舍五入.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/14%20intval%E5%87%BD%E6%95%B0%E5%9B%9B%E8%88%8D%E4%BA%94%E5%85%A5.php
14 intval函数四舍五入.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/14%20intval%E5%87%BD%E6%95%B0%E5%9B%9B%E8%88%8D%E4%BA%94%E5%85%A5.php
15 strpos数组绕过NULL与ereg正则%00截断.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/15%20strpos%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87NULL%E4%B8%8Eereg%E6%AD%A3%E5%88%99%2500%E6%88%AA%E6%96%AD.php
15 strpos数组绕过NULL与ereg正则%00截断.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/15%20strpos%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87NULL%E4%B8%8Eereg%E6%AD%A3%E5%88%99%2500%E6%88%AA%E6%96%AD.php
16 SQL注入or绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/16%20SQL%E6%B3%A8%E5%85%A5or%E7%BB%95%E8%BF%87.php
16 SQL注入or绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/16%20SQL%E6%B3%A8%E5%85%A5or%E7%BB%95%E8%BF%87.php
17 密码md5比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/17%20%E5%AF%86%E7%A0%81md5%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
17 密码md5比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/17%20%E5%AF%86%E7%A0%81md5%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
18 md5()函数===使用数组绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/18%20md5()%E5%87%BD%E6%95%B0%3D%3D%3D%E4%BD%BF%E7%94%A8%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87.php
18 md5()函数===使用数组绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/18%20md5()%E5%87%BD%E6%95%B0%3D%3D%3D%E4%BD%BF%E7%94%A8%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87.php
19 ereg()函数strpos() 函数用数组返回NULL绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/19%20ereg()%E5%87%BD%E6%95%B0strpos()%20%E5%87%BD%E6%95%B0%E7%94%A8%E6%95%B0%E7%BB%84%E8%BF%94%E5%9B%9ENULL%E7%BB%95%E8%BF%87.php
19 ereg()函数strpos() 函数用数组返回NULL绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/19%20ereg()%E5%87%BD%E6%95%B0strpos()%20%E5%87%BD%E6%95%B0%E7%94%A8%E6%95%B0%E7%BB%84%E8%BF%94%E5%9B%9ENULL%E7%BB%95%E8%BF%87.php
20 十六进制与数字比较.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/20%20%E5%8D%81%E5%85%AD%E8%BF%9B%E5%88%B6%E4%B8%8E%E6%95%B0%E5%AD%97%E6%AF%94%E8%BE%83.php
20 十六进制与数字比较.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/20%20%E5%8D%81%E5%85%AD%E8%BF%9B%E5%88%B6%E4%B8%8E%E6%95%B0%E5%AD%97%E6%AF%94%E8%BE%83.php
21 数字验证正则绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/21%20%E6%95%B0%E5%AD%97%E9%AA%8C%E8%AF%81%E6%AD%A3%E5%88%99%E7%BB%95%E8%BF%87.php
21 数字验证正则绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/21%20%E6%95%B0%E5%AD%97%E9%AA%8C%E8%AF%81%E6%AD%A3%E5%88%99%E7%BB%95%E8%BF%87.php
22 弱类型整数大小比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/22%20%E5%BC%B1%E7%B1%BB%E5%9E%8B%E6%95%B4%E6%95%B0%E5%A4%A7%E5%B0%8F%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
22 弱类型整数大小比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/22%20%E5%BC%B1%E7%B1%BB%E5%9E%8B%E6%95%B4%E6%95%B0%E5%A4%A7%E5%B0%8F%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
23 md5函数验证绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/23%20md5%E5%87%BD%E6%95%B0%E9%AA%8C%E8%AF%81%E7%BB%95%E8%BF%87.php
23 md5函数验证绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/23%20md5%E5%87%BD%E6%95%B0%E9%AA%8C%E8%AF%81%E7%BB%95%E8%BF%87.php
24 md5函数true绕过注入.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/24%20md5%E5%87%BD%E6%95%B0true%E7%BB%95%E8%BF%87%E6%B3%A8%E5%85%A5.php
24 md5函数true绕过注入.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/24%20md5%E5%87%BD%E6%95%B0true%E7%BB%95%E8%BF%87%E6%B3%A8%E5%85%A5.php
25 switch没有break 字符与0比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/25%20switch%E6%B2%A1%E6%9C%89break%20%E5%AD%97%E7%AC%A6%E4%B8%8E0%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
25 switch没有break 字符与0比较绕过.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/25%20switch%E6%B2%A1%E6%9C%89break%20%E5%AD%97%E7%AC%A6%E4%B8%8E0%E6%AF%94%E8%BE%83%E7%BB%95%E8%BF%87.php
26 unserialize()序列化.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/26%20unserialize()%E5%BA%8F%E5%88%97%E5%8C%96.php
26 unserialize()序列化.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/26%20unserialize()%E5%BA%8F%E5%88%97%E5%8C%96.php
27.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/27.php
27.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/27.php
28.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/28.php
28.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/28.php
29.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/29.php
29.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/29.php
30 利用提交数组绕过逻辑.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/30%20%E5%88%A9%E7%94%A8%E6%8F%90%E4%BA%A4%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87%E9%80%BB%E8%BE%91.php
30 利用提交数组绕过逻辑.phphttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/30%20%E5%88%A9%E7%94%A8%E6%8F%90%E4%BA%A4%E6%95%B0%E7%BB%84%E7%BB%95%E8%BF%87%E9%80%BB%E8%BE%91.php
README.mdhttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/README.md
README.mdhttps://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/README.md
READMEhttps://patch-diff.githubusercontent.com/ssstl/php_bugs
https://patch-diff.githubusercontent.com/ssstl/php_bugs#php代码审计分段讲解
薄雾‘ s Bloghttp://www.bowu8.com
bowu (Github)https://github.com/bowu678/php_bugs
https://patch-diff.githubusercontent.com/ssstl/php_bugs#关于本项目
bowu (Github)https://github.com/bowu678/php_bugs
https://patch-diff.githubusercontent.com/ssstl/php_bugs#01-extract变量覆盖
https://patch-diff.githubusercontent.com/ssstl/php_bugs#02-绕过过滤的空白字符
PHP类型与逻辑+fuzz与源代码审计http://www.chnpanda.com/961.html
https://patch-diff.githubusercontent.com/ssstl/php_bugs#03-多重加密
https://patch-diff.githubusercontent.com/ssstl/php_bugs#04-sql注入_with-rollup绕过
实验吧 因缺思汀的绕过 By Assassin(with rollup统计)http://blog.csdn.net/qq_35078631/article/details/54772798
使用 GROUP BY WITH ROLLUP 改善统计性能http://blog.csdn.net/id19870510/article/details/6254358
因缺思汀的绕过http://www.bubuko.com/infodetail-2169730.html
https://patch-diff.githubusercontent.com/ssstl/php_bugs#05-ereg正则00截断
http://127.0.0.1/Php_Bug/05.php?password=1e9%00*-http://127.0.0.1/Php_Bug/05.php?password=1e9%00*-
eregi()http://www.am0s.com/functions/203.html
https://patch-diff.githubusercontent.com/ssstl/php_bugs#06-strcmp比较字符串
https://patch-diff.githubusercontent.com/ssstl/php_bugs#07-sha函数比较绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#08-session验证绕过
【Writeup】Boston Key Party CTF 2015(部分题目)http://blog.csdn.net/lymingha0/article/details/44079981
https://patch-diff.githubusercontent.com/ssstl/php_bugs#09-密码md5比较绕过
DUTCTF-2015-Writeuphttp://bobao.360.cn/ctf/learning/129.html
https://patch-diff.githubusercontent.com/ssstl/php_bugs#10-urldecode二次编码绕过
URL编码表https://baike.baidu.com/item/URL%E7%BC%96%E7%A0%81/3703727?fr=aladdin
https://patch-diff.githubusercontent.com/ssstl/php_bugs#11-sql闭合绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#12-x-forwarded-for绕过指定ip地址
https://patch-diff.githubusercontent.com/ssstl/php_bugs#13-md5加密相等绕过
PHP 探测任意网站密码明文/加密手段办法https://www.v2ex.com/t/188364
https://patch-diff.githubusercontent.com/ssstl/php_bugs#14-intval函数四舍五入
PHP intval()函数利用http://blog.csdn.net/wangjian1012/article/details/51581564
https://patch-diff.githubusercontent.com/ssstl/php_bugs#15-strpos数组绕过null与ereg正则00截断
https://patch-diff.githubusercontent.com/ssstl/php_bugs#16-sql注入or绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#17-密码md5比较绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#18-md5函数使用数组绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#19-ereg函数strpos-函数用数组返回null绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#20-十六进制与数字比较
https://patch-diff.githubusercontent.com/ssstl/php_bugs#21-数字验证正则绕过
安全宝「约宝妹」代码审计CTF题解http://bobao.360.cn/learning/detail/248.html
各种版本PHP在线迷你运行脚本https://3v4l.org/jYSpC
PHP Comparison Operatorshttp://php.net/manual/en/language.operators.comparison.php
https://patch-diff.githubusercontent.com/ssstl/php_bugs#22-弱类型整数大小比较绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#23-md5函数验证绕过
https://patch-diff.githubusercontent.com/ssstl/php_bugs#24-md5函数true绕过注入
https://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/img/24_1.png
MD5加密后的SQL 注入http://blog.csdn.net/greyfreedom/article/details/45846137
敏感函数md5()http://www.am0s.com/functions/204.html
php黑魔法http://www.xmanblog.net/2017/04/04/php-magic/
https://patch-diff.githubusercontent.com/ssstl/php_bugs#25-switch没有break-字符与0比较绕过
PHP中字符串和数字 0 比较为什么返回true?https://zhidao.baidu.com/question/336186893.html
https://patch-diff.githubusercontent.com/ssstl/php_bugs#26-unserialize序列化
https://patch-diff.githubusercontent.com/ssstl/php_bugs#30-利用提交数组绕过逻辑
https://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/img/30_1.png
https://patch-diff.githubusercontent.com/ssstl/php_bugs/blob/master/img/30_2.png
Readme https://patch-diff.githubusercontent.com/ssstl/php_bugs#readme-ov-file
Please reload this pagehttps://patch-diff.githubusercontent.com/ssstl/php_bugs
Activityhttps://patch-diff.githubusercontent.com/ssstl/php_bugs/activity
0 starshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/stargazers
0 watchinghttps://patch-diff.githubusercontent.com/ssstl/php_bugs/watchers
0 forkshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/forks
Report repository https://patch-diff.githubusercontent.com/contact/report-content?content_url=https%3A%2F%2Fgithub.com%2Fssstl%2Fphp_bugs&report=ssstl+%28user%29
Releaseshttps://patch-diff.githubusercontent.com/ssstl/php_bugs/releases
Packages 0https://patch-diff.githubusercontent.com/users/ssstl/packages?repo_name=php_bugs
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.